From: Emerson C. - M. <eme...@si...> - 2002-06-27 23:13:36
|
I had some junit tests that tested some ejbs. Now we inserted JAAS security. How can i set user/passwd if the client will be automated by ant/junit?? - using principal and credencials in jndi.properties???? |
From: Scott M S. <Sco...@jb...> - 2002-06-27 23:19:21
|
See the security unit tests in our testsuite module. xxxxxxxxxxxxxxxxxxxxxxxx Scott Stark Chief Technology Officer JBoss Group, LLC xxxxxxxxxxxxxxxxxxxxxxxx ----- Original Message ----- From: "Emerson Cargnin - MSA" <eme...@si...> To: <jbo...@li...> Sent: Thursday, June 27, 2002 4:15 PM Subject: [JBoss-user] JUnit and testing a EJB with security > I had some junit tests that tested some ejbs. Now we inserted JAAS > security. How can i set user/passwd if the client will be automated by > ant/junit?? > > - using principal and credencials in jndi.properties???? > > > > > ------------------------------------------------------- > This sf.net email is sponsored by:ThinkGeek > Bringing you mounds of caffeinated joy. > http://thinkgeek.com/sf > _______________________________________________ > JBoss-user mailing list > JBo...@li... > https://lists.sourceforge.net/lists/listinfo/jboss-user > |
From: Emerson C. - M. <eme...@si...> - 2002-06-28 00:34:52
|
do I have to use org.jboss.test.util.AppCallbackHandler as the AppCallbackHandler? It will work if I just use the jndi.properties with principal and credencials??? This way would be more trasparent... Scott M Stark wrote: > See the security unit tests in our testsuite module. > > xxxxxxxxxxxxxxxxxxxxxxxx > Scott Stark > Chief Technology Officer > JBoss Group, LLC > xxxxxxxxxxxxxxxxxxxxxxxx > ----- Original Message ----- > From: "Emerson Cargnin - MSA" <eme...@si...> > To: <jbo...@li...> > Sent: Thursday, June 27, 2002 4:15 PM > Subject: [JBoss-user] JUnit and testing a EJB with security > > > >>I had some junit tests that tested some ejbs. Now we inserted JAAS >>security. How can i set user/passwd if the client will be automated by >>ant/junit?? >> >>- using principal and credencials in jndi.properties???? >> >> >> >> >>------------------------------------------------------- >>This sf.net email is sponsored by:ThinkGeek >>Bringing you mounds of caffeinated joy. >>http://thinkgeek.com/sf >>_______________________________________________ >>JBoss-user mailing list >>JBo...@li... >>https://lists.sourceforge.net/lists/listinfo/jboss-user >> >> > > > > ------------------------------------------------------- > This sf.net email is sponsored by:ThinkGeek > Bringing you mounds of caffeinated joy. > http://thinkgeek.com/sf > _______________________________________________ > JBoss-user mailing list > JBo...@li... > https://lists.sourceforge.net/lists/listinfo/jboss-user > > |
From: Scott M S. <Sco...@jb...> - 2002-06-28 00:43:47
|
> do I have to use org.jboss.test.util.AppCallbackHandler as the > AppCallbackHandler? > No, you can provide your own handler. > > It will work if I just use the jndi.properties with principal and > credencials??? This way would be more trasparent... > No. Write your own InitialContextFactory to do this. |
From: Emerson C. - M. <eme...@si...> - 2002-06-28 00:43:37
|
isn't the espc says to allow the jndi.properties to set both java.naming.security.principal=admin and java.naming.security.credentials=passwd ?? Scott M Stark wrote: > See the security unit tests in our testsuite module. > > xxxxxxxxxxxxxxxxxxxxxxxx > Scott Stark > Chief Technology Officer > JBoss Group, LLC > xxxxxxxxxxxxxxxxxxxxxxxx > ----- Original Message ----- > From: "Emerson Cargnin - MSA" <eme...@si...> > To: <jbo...@li...> > Sent: Thursday, June 27, 2002 4:15 PM > Subject: [JBoss-user] JUnit and testing a EJB with security > > > >>I had some junit tests that tested some ejbs. Now we inserted JAAS >>security. How can i set user/passwd if the client will be automated by >>ant/junit?? >> >>- using principal and credencials in jndi.properties???? >> >> >> >> >>------------------------------------------------------- >>This sf.net email is sponsored by:ThinkGeek >>Bringing you mounds of caffeinated joy. >>http://thinkgeek.com/sf >>_______________________________________________ >>JBoss-user mailing list >>JBo...@li... >>https://lists.sourceforge.net/lists/listinfo/jboss-user >> >> > > > > ------------------------------------------------------- > This sf.net email is sponsored by:ThinkGeek > Bringing you mounds of caffeinated joy. > http://thinkgeek.com/sf > _______________________________________________ > JBoss-user mailing list > JBo...@li... > https://lists.sourceforge.net/lists/listinfo/jboss-user > > |
From: Scott M S. <Sco...@jb...> - 2002-06-28 01:20:42
|
No way. The spec is moving toward JAAS and it never mentioned that the JNDI InitialContext should be the mechanism for providing authentication information. Search the 572 page of the ejb spec and there are zero references to jndi.properties. xxxxxxxxxxxxxxxxxxxxxxxx Scott Stark Chief Technology Officer JBoss Group, LLC xxxxxxxxxxxxxxxxxxxxxxxx ----- Original Message ----- From: "Emerson Cargnin - MSA" <eme...@si...> To: <jbo...@li...> Sent: Thursday, June 27, 2002 5:45 PM Subject: Re: [JBoss-user] JUnit and testing a EJB with security > isn't the espc says to allow the jndi.properties to set both > java.naming.security.principal=admin and > java.naming.security.credentials=passwd > ?? > |
From: Emerson C. - M. <eme...@si...> - 2002-06-28 21:39:34
|
I tried to use the security tests from CVS. My problem is to make a junit test to access the EJB's using security. My server uses ldap to authenticate users. From embbeded tomcat it works allright, i did the following to access through junit task : - ant build.xml file that calls junit test: <junit printsummary="true" fork="yes"> <formatter type="xml" /> <sysproperty key="java.security.auth.login.config" value="${config.tests}/auth.conf"/> <batchtest fork="yes" todir="${tests.report.dir}"> <fileset dir="${tests.dir}"> <include name="**/*Test*.class" /> </fileset> </batchtest> <classpath> ... </classpath> </junit> - auth.conf file : other { org.jboss.security.ClientLoginModule required; }; - junit test case method (excerpt) : ... LoginContext lc = null; boolean loggedIn = false; try { AppCallbackHandler handler = new AppCallbackHandler("admin","admin".toCharArray()); lc = new LoginContext("other", handler); lc.login(); } catch (LoginException e) {assertTrue("login not ok"+e.getMessage(),false);} ... (call EJB methods though businness delegates ) obs : the AppCallbackHandler is the one of JBoss tests. The client doesn't give me any error (during login) and the server gives me the following message : 16:45:19,511 ERROR [SecurityInterceptor] Authentication exception, principal=null 16:45:19,731 ERROR [SecurityInterceptor] Authentication exception, principal=null 16:45:19,821 ERROR [SecurityInterceptor] Authentication exception, principal=null 16:45:19,935 ERROR [SecurityInterceptor] Authentication exception, principal=null One question : with this steps done (if it's not missing nothing), may I call the ejb's methods without any other code, that the user context (principal) will be sent to the jboss server??? obs: the jboss server, as I said before, uses ldap to authenticate and autorize, and it works very well for the tomcat embbeded. Correct me if i'm wrong, but for the client, it doens't matter what kind of jaas loginModule the server uses, isn't? Scott M Stark wrote: > No way. The spec is moving toward JAAS and it never > mentioned that the JNDI InitialContext should be the mechanism > for providing authentication information. Search the 572 page > of the ejb spec and there are zero references to jndi.properties. > > xxxxxxxxxxxxxxxxxxxxxxxx > Scott Stark > Chief Technology Officer > JBoss Group, LLC > xxxxxxxxxxxxxxxxxxxxxxxx > ----- Original Message ----- > From: "Emerson Cargnin - MSA" <eme...@si...> > To: <jbo...@li...> > Sent: Thursday, June 27, 2002 5:45 PM > Subject: Re: [JBoss-user] JUnit and testing a EJB with security > > > >>isn't the espc says to allow the jndi.properties to set both >>java.naming.security.principal=admin and >>java.naming.security.credentials=passwd >>?? >> >> > > > > > ------------------------------------------------------- > This sf.net email is sponsored by:ThinkGeek > Bringing you mounds of caffeinated joy. > http://thinkgeek.com/sf > _______________________________________________ > JBoss-user mailing list > JBo...@li... > https://lists.sourceforge.net/lists/listinfo/jboss-user > > |