[prev in list] [next in list] [prev in thread] [next in thread]
List: jboss-user
Subject: [JBoss-user] [Security & JAAS/JBoss] - Re: Am I missing a trick?
From: pander <do-not-reply () jboss ! com>
Date: 2006-05-31 21:53:39
Message-ID: 21503080.1149112419781.JavaMail.jboss () colo-br-02 ! atl ! jboss ! com
[Download RAW message or body]
Hi guys,
I don't think this is the intended TRACE that anil wanted me to setup, but it may be \
useful in trying to diagnose the problem...
Here is a section of the server.log from the login form, a successful login and then \
a redirect to index.jsp (my landing page once logged in).
anonymous wrote : 2006-05-31 22:33:10,843 DEBUG \
[org.jboss.web.tomcat.security.FormAuthenticator] Authenticating username 'pander' | \
2006-05-31 22:33:10,843 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] \
Begin authenticate, username=pander | 2006-05-31 22:33:11,359 DEBUG \
[org.jboss.security.plugins.JaasSecurityManager.AMIRealm] CallbackHandler: \
org.jboss.security.auth.callback.SecurityAssociationHandler@174d4c9 | 2006-05-31 \
22:33:11,359 DEBUG [org.jboss.security.plugins.JaasSecurityManagerService] Created \
securityMgr=org.jboss.security.plugins.JaasSecurityManager@13e02ed | 2006-05-31 \
22:33:11,359 DEBUG [org.jboss.security.plugins.JaasSecurityManager.AMIRealm] \
CachePolicy set to: org.jboss.util.TimedCachePolicy@322394 | 2006-05-31 22:33:11,359 \
DEBUG [org.jboss.security.plugins.JaasSecurityManagerService] setCachePolicy, \
c=org.jboss.util.TimedCachePolicy@322394 | 2006-05-31 22:33:11,359 DEBUG \
[org.jboss.security.plugins.JaasSecurityManagerService] Added AMIRealm, \
org.jboss.security.plugins.SecurityDomainContext@1bdcbb2 to map | 2006-05-31 \
22:33:11,375 DEBUG [org.jboss.resource.connectionmanager.IdleRemover] \
internalRegisterPool: registering pool with interval 900000 old interval: \
9223372036854775807 | 2006-05-31 22:33:11,375 DEBUG \
[org.jboss.resource.connectionmanager.IdleRemover] internalRegisterPool: about to \
notify thread: old next: 1149111641375, new next: 1149111641375 | 2006-05-31 \
22:33:11,625 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] User: pander \
is authenticated | 2006-05-31 22:33:11,625 TRACE \
[org.jboss.web.tomcat.security.JBossSecurityMgrRealm] Mapped from input principal: \
panderto: pander | 2006-05-31 22:33:11,625 TRACE \
[org.jboss.web.tomcat.security.JBossSecurityMgrRealm] End authenticate, \
principal=GenericPrincipal[pander(ami.admin,ami.distributor,)] | 2006-05-31 \
22:33:11,625 DEBUG [org.jboss.web.tomcat.security.FormAuthenticator] Authentication \
of 'pander' was successful | 2006-05-31 22:33:11,625 DEBUG \
[org.jboss.web.tomcat.security.FormAuthenticator] Redirecting to original '/AMI/' | \
2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
--------------------------------------------------------------- | 2006-05-31 \
22:33:11,625 INFO [org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
authType=null | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
contentLength=-1 | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
contentType=null | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
header=Location=https://localhost:8443/AMI/ | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
message=null | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
remoteUser=null | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
status=302 | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
=============================================================== | 2006-05-31 \
22:33:11,625 INFO [org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
REQUEST URI =/AMI/ | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
authType=null | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
characterEncoding=null | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
contentLength=-1 | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
contentType=null | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
contextPath=/AMI | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
cookie=JSESSIONID=35639F9D571604D6673E15687DAD34F5 | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
header=accept=image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, \
application/x-shockwave-flash, application/vnd.ms-excel, \
application/vnd.ms-powerpoint, application/msword, */* | 2006-05-31 22:33:11,625 \
INFO [org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
header=referer=https://localhost:8443/AMI/ | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
header=accept-language=en-us | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
header=accept-encoding=gzip, deflate | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
header=user-agent=Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR \
1.0.3705; .NET CLR 1.1.4322; Media Center PC 4.0; InfoPath.1) | 2006-05-31 \
22:33:11,625 INFO [org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
header=host=localhost:8443 | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
header=connection=Keep-Alive | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
header=cache-control=no-cache | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
header=cookie=JSESSIONID=35639F9D571604D6673E15687DAD34F5 | 2006-05-31 22:33:11,625 \
INFO [org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
locale=en_US | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
method=GET | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
pathInfo=null | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
protocol=HTTP/1.1 | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
queryString=null | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
remoteAddr=127.0.0.1 | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
remoteHost=127.0.0.1 | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
remoteUser=null | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
requestedSessionId=35639F9D571604D6673E15687DAD34F5 | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
scheme=https | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
serverName=localhost | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
serverPort=8443 | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
servletPath=/index.jsp | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
isSecure=true | 2006-05-31 22:33:11,625 INFO \
[org.apache.catalina.core.ContainerBase.[jboss.web].[localhost]] \
--------------------------------------------------------------- | 2006-05-31 \
22:33:11,640 DEBUG [org.jboss.web.tomcat.security.FormAuthenticator] Restore request \
from session '35639F9D571604D6673E15687DAD34F5' | 2006-05-31 22:33:11,640 DEBUG \
[org.jboss.web.tomcat.security.FormAuthenticator] Proceed to restored request | \
2006-05-31 22:33:11,640 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] \
Checking roles GenericPrincipal[pander(ami.admin,ami.distributor,)] | 2006-05-31 \
22:33:11,640 TRACE [org.jboss.web.tomcat.security.JBossSecurityMgrRealm] No role \
found: ami.distributor | 2006-05-31 22:33:11,640 TRACE \
[org.jboss.web.tomcat.security.JBossSecurityMgrRealm] No role found: ami.child | \
2006-05-31 22:33:11,640 TRACE [org.jboss.web.tomcat.security.FormAuthValve] Enter, \
j_username=null | 2006-05-31 22:33:11,640 TRACE \
[org.jboss.web.tomcat.security.SecurityAssociationValve] Begin invoke, \
callerGenericPrincipal[pander(ami.admin,ami.distributor,)] | 2006-05-31 22:33:11,640 \
TRACE [org.jboss.web.tomcat.security.SecurityAssociationValve] Restoring principal \
info from cache | 2006-05-31 22:33:11,640 TRACE \
[org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null | 2006-05-31 \
22:33:11,640 TRACE [org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null | \
2006-05-31 22:33:11,828 TRACE [org.jboss.web.tomcat.security.RunAsListener] jsp, \
runAs: null | 2006-05-31 22:33:11,828 TRACE \
[org.jboss.web.tomcat.security.RunAsListener] jsp, runAs: null | 2006-05-31 \
22:33:11,828 TRACE [org.jboss.web.tomcat.security.SecurityAssociationValve] End \
invoke, callerGenericPrincipal[pander(ami.admin,ami.distributor,)] | 2006-05-31 \
22:33:11,828 TRACE [org.jboss.web.tomcat.security.FormAuthValve] SessionID: \
35639F9D571604D6673E15687DAD34F5 | 2006-05-31 22:33:11,828 TRACE \
[org.jboss.web.tomcat.security.FormAuthValve] SecurityAssociation.exception: null | \
2006-05-31 22:33:11,828 TRACE [org.jboss.web.tomcat.security.FormAuthValve] Exit, \
username: null
As you can see, the FormAuthValve does seem to be active, but j_username seems to be \
null which is a little worrying...
Paul.
View the original post : \
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3948221#3948221
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3948221
-------------------------------------------------------
All the advantages of Linux Managed Hosting--Without the Cost and Risk!
Fully trained technicians. The highest number of Red Hat certifications in
the hosting industry. Fanatical Support. Click to learn more
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=107521&bid=248729&dat=121642
_______________________________________________
JBoss-user mailing list
JBoss-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/jboss-user
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic