'[JBoss-user] [Security & JAAS/JBoss] - Re: Am I missing a trick?'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       jboss-user
Subject:    [JBoss-user] [Security & JAAS/JBoss] - Re: Am I missing a trick?
From:       pander <do-not-reply () jboss ! com>
Date:       2006-05-31 21:53:39
Message-ID: 21503080.1149112419781.JavaMail.jboss () colo-br-02 ! atl ! jboss ! com
[Download RAW message or body]

Hi guys,

I don't think this is the intended TRACE that anil wanted me to setup, but it may be \
useful in trying to diagnose the problem...

Here is a section of the server.log from the login form, a successful login and then \
a redirect to index.jsp (my landing page once logged in).

anonymous wrote : 2006-05-31 22:33:10,843 DEBUG \
[org.jboss.web.tomcat.security.FormAuthenticator] Authenticating username 'pander'  | \
2006-05-31 22:33:10,843 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] \
Begin authenticate, username=pander  | 2006-05-31 22:33:11,359 DEBUG \
[org.jboss.security.plugins.JaasSecurityManager.AMIRealm] CallbackHandler: \
org.jboss.security.auth.callback.SecurityAssociationHandler@174d4c9  | 2006-05-31 \
22:33:11,359 DEBUG [org.jboss.security.plugins.JaasSecurityManagerService] Created \
securityMgr=org.jboss.security.plugins.JaasSecurityManager@13e02ed  | 2006-05-31 \
22:33:11,359 DEBUG [org.jboss.security.plugins.JaasSecurityManager.AMIRealm] \
CachePolicy set to: org.jboss.util.TimedCachePolicy@322394  | 2006-05-31 22:33:11,359 \
DEBUG [org.jboss.security.plugins.JaasSecurityManagerService] setCachePolicy, \
c=org.jboss.util.TimedCachePolicy@322394  | 2006-05-31 22:33:11,359 DEBUG \
[org.jboss.security.plugins.JaasSecurityManagerService] Added AMIRealm, \
org.jboss.security.plugins.SecurityDomainContext@1bdcbb2 to map  | 2006-05-31 \
22:33:11,375 DEBUG [org.jboss.resource.connectionmanager.IdleRemover] \
internalRegisterPool: registering pool with interval 900000 old interval: \
9223372036854775807  | 2006-05-31 22:33:11,375 DEBUG \
[org.jboss.resource.connectionmanager.IdleRemover] internalRegisterPool: about to \
notify thread: old next: 1149111641375, new next: 1149111641375  | 2006-05-31 \
22:33:11,625 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] User: pander \
is authenticated  | 2006-05-31 22:33:11,625 TRACE \
[org.jboss.web.tomcat.security.JBossSecurityMgrRealm] Mapped from input principal: \
panderto: pander  | 2006-05-31 22:33:11,625 TRACE \
[org.jboss.web.tomcat.security.JBossSecurityMgrRealm] End authenticate, \
principal=GenericPrincipal[pander(ami.admin,ami.distributor,)]  | 2006-05-31 \
22:33:11,625 DEBUG [org.jboss.web.tomcat.security.FormAuthenticator] Authentication \
of 'pander' was successful  | 2006-05-31 22:33:11,625 DEBUG \
[org.jboss.web.tomcat.security.FormAuthenticator] Redirecting to original '/AMI/'  | \
2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
---------------------------------------------------------------  | 2006-05-31 \
22:33:11,625 INFO  [org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]   \
authType=null  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]      \
contentLength=-1  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]        \
contentType=null  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]             \
header=Location=https://localhost:8443/AMI/  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]            \
message=null  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]         \
remoteUser=null  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]             \
status=302  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
===============================================================  | 2006-05-31 \
22:33:11,625 INFO  [org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
REQUEST URI       =/AMI/  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]           \
authType=null  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]  \
characterEncoding=null  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]      \
contentLength=-1  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]        \
contentType=null  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]        \
contextPath=/AMI  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]             \
cookie=JSESSIONID=35639F9D571604D6673E15687DAD34F5  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]             \
header=accept=image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, \
application/x-shockwave-flash, application/vnd.ms-excel, \
application/vnd.ms-powerpoint, application/msword, */*  | 2006-05-31 22:33:11,625 \
INFO  [org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]             \
header=referer=https://localhost:8443/AMI/  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]             \
header=accept-language=en-us  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]             \
header=accept-encoding=gzip, deflate  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]             \
header=user-agent=Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR \
1.0.3705; .NET CLR 1.1.4322; Media Center PC 4.0; InfoPath.1)  | 2006-05-31 \
22:33:11,625 INFO  [org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]   \
header=host=localhost:8443  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]             \
header=connection=Keep-Alive  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]             \
header=cache-control=no-cache  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]             \
header=cookie=JSESSIONID=35639F9D571604D6673E15687DAD34F5  | 2006-05-31 22:33:11,625 \
INFO  [org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]             \
locale=en_US  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]             \
method=GET  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]           \
pathInfo=null  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]           \
protocol=HTTP/1.1  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]        \
queryString=null  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]         \
remoteAddr=127.0.0.1  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]         \
remoteHost=127.0.0.1  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]         \
remoteUser=null  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
requestedSessionId=35639F9D571604D6673E15687DAD34F5  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]             \
scheme=https  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]         \
serverName=localhost  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]         \
serverPort=8443  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]        \
servletPath=/index.jsp  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]]           \
isSecure=true  | 2006-05-31 22:33:11,625 INFO  \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
---------------------------------------------------------------  | 2006-05-31 \
22:33:11,640 DEBUG [org.jboss.web.tomcat.security.FormAuthenticator] Restore request \
from session '35639F9D571604D6673E15687DAD34F5'  | 2006-05-31 22:33:11,640 DEBUG \
[org.jboss.web.tomcat.security.FormAuthenticator] Proceed to restored request  | \
2006-05-31 22:33:11,640 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] \
Checking roles GenericPrincipal[pander(ami.admin,ami.distributor,)]  | 2006-05-31 \
22:33:11,640 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] No role \
found:  ami.distributor  | 2006-05-31 22:33:11,640 TRACE \
[org.jboss.web.tomcat.security.JBossSecurityMgrRealm] No role found:  ami.child  | \
2006-05-31 22:33:11,640 TRACE [org.jboss.web.tomcat.security.FormAuthValve] Enter, \
j_username=null  | 2006-05-31 22:33:11,640 TRACE \
[org.jboss.web.tomcat.security.SecurityAssociationValve] Begin invoke, \
callerGenericPrincipal[pander(ami.admin,ami.distributor,)]  | 2006-05-31 22:33:11,640 \
TRACE [org.jboss.web.tomcat.security.SecurityAssociationValve] Restoring principal \
info from cache  | 2006-05-31 22:33:11,640 TRACE \
[org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null  | 2006-05-31 \
22:33:11,640 TRACE [org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null  | \
2006-05-31 22:33:11,828 TRACE [org.jboss.web.tomcat.security.RunAsListener] jsp, \
runAs: null  | 2006-05-31 22:33:11,828 TRACE \
[org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null  | 2006-05-31 \
22:33:11,828 TRACE [org.jboss.web.tomcat.security.SecurityAssociationValve] End \
invoke, callerGenericPrincipal[pander(ami.admin,ami.distributor,)]  | 2006-05-31 \
22:33:11,828 TRACE [org.jboss.web.tomcat.security.FormAuthValve] SessionID: \
35639F9D571604D6673E15687DAD34F5  | 2006-05-31 22:33:11,828 TRACE \
[org.jboss.web.tomcat.security.FormAuthValve] SecurityAssociation.exception: null  | \
2006-05-31 22:33:11,828 TRACE [org.jboss.web.tomcat.security.FormAuthValve] Exit, \
username: null

As you can see, the FormAuthValve does seem to be active, but j_username seems to be \
null which is a little worrying...

Paul.

View the original post : \
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3948221#3948221

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3948221



-------------------------------------------------------
All the advantages of Linux Managed Hosting--Without the Cost and Risk!
Fully trained technicians. The highest number of Red Hat certifications in
the hosting industry. Fanatical Support. Click to learn more
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=107521&bid=248729&dat=121642
_______________________________________________
JBoss-user mailing list
JBoss-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/jboss-user


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic