'[JBoss-user] [Security & JAAS/JBoss] - Re: Principal=null.... please help me'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       jboss-user
Subject:    [JBoss-user] [Security & JAAS/JBoss] - Re: Principal=null.... please help me
From:       craig1980 <nukes () jboss ! org>
Date:       2004-10-31 10:46:33
Message-ID: 5569149.1099219593671.JavaMail.jboss () colo-br-02 ! atl ! jboss ! com
[Download RAW message or body]

Hi; first of all thanks for your answers and i want to  excuse to me for all the \
disturbance i give. Well... i have followed your tips; now my web.xml is this one:

anonymous wrote : <?xml version="1.0" encoding="UTF-8"?>
  | <!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" \
"http://java.sun.com/dtd/web-app_2_3.dtd">  | <web-app>
  |   <display-name>Demo Engineering</display-name>
  |   Semplice demo per l'utilizzo di wfmOpen per Engineering Ingegneria Informatica
  |   
  |     <filter-name>LoginFilter</filter-name>
  |     <filter-class>it.eng.nikko.demo.web.login.LoginFilter</filter-class>
  |     <init-param>
  |       <param-name>ApplicationPolicy</param-name>
  |       <param-value>danetworkflow-ia</param-value>
  |     </init-param>
  |   
  |   <filter-mapping>
  |     <filter-name>LoginFilter</filter-name>
  |     <servlet-name>dispatcher</servlet-name>
  |   </filter-mapping>
  |   
  |     <servlet-name>dispatcher</servlet-name>
  |     <servlet-class>it.eng.nikko.demo.web.login.Dispatcher</servlet-class>
  |     <load-on-startup>1</load-on-startup>
  |   
  |   <servlet-mapping>
  |     <servlet-name>dispatcher</servlet-name>
  |     <url-pattern>/dispatcher</url-pattern>
  |   </servlet-mapping>
  |   <security-constraint>
  |     <display-name>Restricted</display-name>
  |     <web-resource-collection>
  |       <web-resource-name>Restricted</web-resource-name>
  |       <url-pattern>/*</url-pattern>
  |       <http-method>DELETE</http-method>
  |       <http-method>HEAD</http-method>
  |       <http-method>GET</http-method>
  |       <http-method>POST</http-method>
  |       <http-method>PUT</http-method>
  |     </web-resource-collection>
  |     <auth-constraint>
  |       <role-name>StaffManagementUser</role-name>
  |     </auth-constraint>
  |   </security-constraint>
  |   <login-config>
  |     <auth-method>FORM</auth-method>
  |     <form-login-config>
  |       <form-login-page>/login.jsp</form-login-page>
  |       <form-error-page>/error.html</form-error-page>
  |     </form-login-config>
  |   </login-config>
  |   <security-role>
  |     Default
  |     <role-name>StaffManagementUser</role-name>
  |   </security-role>
  |   <ejb-ref>
  |     Mi riferisco al workflow EJB
  |     <ejb-ref-name>ejb/Engine</ejb-ref-name>
  |     <ejb-ref-type>Session</ejb-ref-type>
  |     de.danet.an.workflow.ejbs.WorkflowEngineHome
  |     de.danet.an.workflow.ejbs.WorkflowEngine
  |     <ejb-link>Engine</ejb-link>
  |   </ejb-ref>
  | </web-app>

This is my login.jsp:

<html>
  | <head>
  | <title>login</title>
  | </head>
  | <body bgcolor="#ffffff">
  | <form method="post" action="dispatcher">
  | <table>
  |   <tr>
  |     <td>
  |       <p>Username:</p>
  |     </td>
  |     <td>
  |       <input type="text" name="username"/>
  |     </td>
  |   </tr>
  |   <tr>
  |     <td>
  |       <p>Password:</p>
  |     </td>
  |     <td>
  |       <input type="text" name="password"/>
  |     </td>
  |   </tr>
  | </table>
  | <br>
  | <br>
  | <input type="submit" name="Submit" value="Submit">
  | <input type="reset" value="Reset">
  | </form>
  | </body>
  | </html>

Well... when i try to log in, now the request is not intercepted form the filter... i \
always go to the login page; before, instead, at least once i was able to log and \
call the EJB... i'm not able to understand where i'm wrong... Maybe must not i use \
the servlet called dispatcher and the Filter... i have read from somewhere that the \
action of my login page should be j_security_check and the password field should be \
j_password and username j_username.. i have tried this one but, as i thinked, i had \
an error that syas to that the resource is not available.... Wow.. or i'm an idiot or \
it's really difficult to set this kind of security :-)) Please do you have any ideas?

View the original post : \
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3853411#3853411

Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3853411



-------------------------------------------------------
This SF.Net email is sponsored by:
Sybase ASE Linux Express Edition - download now for FREE
LinuxWorld Reader's Choice Award Winner for best database on Linux.
http://ads.osdn.com/?ad_id=5588&alloc_id=12065&op=click
_______________________________________________
JBoss-user mailing list
JBoss-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/jboss-user


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic