java ee - TomEE, JAAS, SQLLoginModule and 403 -


i have added sqlloginmodule deployment (tomee 1.5.1):

  1. system property points login.config
  2. login.config configured use sqllogin realm
  3. server.xml updated use realm

here's web.xml (i'm sure problem here)

<security-constraint>     <display-name>unsecured</display-name>     <web-resource-collection>         <web-resource-name>unsecured area</web-resource-name>         <url-pattern>/login.html</url-pattern>     </web-resource-collection>     <user-data-constraint>         <transport-guarantee>confidential</transport-guarantee>     </user-data-constraint> </security-constraint>  <security-constraint>     <web-resource-collection>         <web-resource-name>entire application</web-resource-name>         <url-pattern>*.html</url-pattern>     </web-resource-collection>     <auth-constraint>         <role-name>admin</role-name>         <role-name>superuser</role-name>         <role-name>user</role-name>     </auth-constraint>     <user-data-constraint>         <transport-guarantee>confidential</transport-guarantee>     </user-data-constraint> </security-constraint>  <security-role>     <role-name>admin</role-name> </security-role> <security-role>     <role-name>superuser</role-name> </security-role> <security-role>     <role-name>user</role-name> </security-role>  <login-config>     <auth-method>form</auth-method>     <realm-name>sqllogin</realm-name>     <form-login-config>         <form-login-page>/login.html</form-login-page>         <form-error-page>/login.html</form-error-page>     </form-login-config> </login-config>  <welcome-file-list>     <welcome-file>testrest.html</welcome-file> </welcome-file-list>

deploying , logging-in, remote debugged org.apache.openejb.core.security.jaas.sqlloginmodule no exceptions, reason redirection welcome-file fails , 403 access-denied error.

any thoughts?

so, here solution after personal "via dolorosa" :)
first, error in server.xml jaasrealm configuration.
using instruction @ http://tomee.apache.org/tomee-jaas.html used 

userclassnames="org.apache.openejb.core.security.abstractsecurityservice$user" roleclassnames="org.apache.openejb.core.security.abstractsecurityservice$group"

after downloading tomcat sources , debugging found out actual generated principals org.apache.openejb.core.security.jaas.sqlloginmodule are:

userclassnames="org.apache.openejb.core.security.jaas.userprincipal" roleclassnames="org.apache.openejb.core.security.jaas.groupprincipal"

that solved problem.


Comments

Post a Comment

Popular posts from this blog

linux - xterm copying to CLIPBOARD using copy-selection causes automatic updating of CLIPBOARD upon mouse selection -

i've tried various ways coerce xterm (versions 285 , 292) copy selection clipboard clipboard whenever press ctrl-shift-c. promising way far has been, in ~/.xresources, put this: xterm*vt100.translations: #override \ ctrl shift <keypress> c: copy-selection(clipboard) \n\ ctrl shift <keypress> v: insert-selection(clipboard) ctrl-shift-v works perfectly, copying has nuance... if restart xterm, highlighting text puts things in primary clipboard; expected, proper, default behavior. if hit ctrl-shift-c, copies current selection clipboard clipboard. the bug, however, if highlight text after first time pressed ctrl-shift-c, you'll see highlighting copies both primary and clipboard. cannot figure out how stop xterm updating clipboard upon selection... , doesn't make sense me in first place. i said, @ specific point in time, copy selection clipboard... yet starts updating automatically upon selection after doing once... anyone have workaround...
Read more

c++ - qgraphicsview horizontal scrolling always has a vertical delta -

Image
i've subclassed qgraphicsview custom canvas used in cad application. i've reimplemented qgraphicsview::wheelevent check keyboard modifiers control key and, if control key pressed, zoom. i'm trying implement horizontal scroll when user holds shift , uses wheel. the problem i'm having horizontal scrolling always scrolls 0.279. not huge problem, hugely annoying , points else being wrong. so, here questions: is right way implement horizontal scrolling? if not, is? how eliminate delta of 0.279? thanks in advance. code , sample output below void myview::zoom(int delta) { double factor = pow(1.2, delta/abs(delta)); this->scale(factor, factor); } void myview::scrollhorizontal(int level) { qpointf center = maptoscene(viewport()->rect().center()); qdebug() << "center: " << center.x() << ", " << center.y(); centeron(qpointf(center.x() - level, center.y())); } void myview::wheelevent(qwheeleve...
Read more