• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 952
  • Last Modified:

Error after configuring the custom Login Module using JAAS in Oracle 10g AS for J2EE 9 .0.4

After I have configured custom login module in oc4j and deploy the application, it was giving me the following error for all the group names when i access the application index page

Membership check for group: EDIT_ALL failed for user: jazn.com/anonymous
Membership check for group: DELETE_ALL failed for user: jazn.com/anonymous
Membership check for group: READ_index failed for user: jazn.com/anonymous
Membership check for group: READ_ALL failed for user: jazn.com/anonymous

I have my custom class and its dependency classes are there in the classpath, the control is not even going there to Custom Login code.

I have attached the jazn-data.xml.

Can any please let me know how to resolve this problem.
am i missing something?



Following were the configuration changes i have made.
I have included the entry in C:\oracle\product\904\oracleas_1\j2ee\home\config\jazn-data.xml
<jazn-loginconfig>
<application> 		
	<name>EDX</name>
	<login-modules>
		<login-module>
				<class>com.sungard.edx.security.oc4j.EDXLoginModule</class>
				<control-flag>required</control-flag>
			<options>
				<option>
					<name>data_source_name</name>
					<value>jdbc/EDX-DS</value>
				</option>
				<option>
					<name>debug</name>
					<value>true</value>
				</option>
				<option>
					<name>application_realm</name>
					<value>EDX</value>
				</option>
				<option>
					<name>log_level</name>
					<value>ALL</value>
				</option>
			</options>
		</login-module>
	</login-modules>
</application>
</jazn-loginconfig>
 
 
orion-application.xml
 
<orion-application deployment-version="9.0.4.0.0" default-data-source="jdbc/OracleDS" treat-zero-as-null="true">
	<ejb-module remote="false" path="edx.jar" /> 
	<web-module id="edxgui" path="edxgui.war" />
	<web-module id="axis" path="axis.war" />
	<security-role-mapping name="READ_index">
		<group name="READ_index" />
	</security-role-mapping>
	<security-role-mapping name="READ_ALL">
		<group name="READ_ALL" />
	</security-role-mapping>
	<security-role-mapping name="EDIT_ALL">
		<group name="EDIT_ALL" />
	</security-role-mapping>
	<security-role-mapping name="DELETE_ALL">
		<group name="DELETE_ALL" />
	</security-role-mapping>
	<persistence path="persistence" />
	<principals path="principals.xml" />
	<jazn provider="XML" >
		<property name="role.mapping.dynamic" value="true" />
	</jazn>
	<log>
		<file path="application.log" />
	</log>
</orion-application>
 
orion-web.xml
 
<?xml version="1.0"?>
<!DOCTYPE orion-web-app PUBLIC "-//ORACLE//DTD OC4J Web Application 9.04//EN" "http://xmlns.oracle.com/ias/dtds/orion-web-9_04.dtd">
 
<orion-web-app
	deployment-version="9.0.4.0.0"
	temporary-directory="./temp"
	internationalize-resources="false"
	default-mime-type="application/octet-stream"
>
	<!-- Uncomment this element to control web application class loader behavior.
		<web-app-class-loader search-local-classes-first="true"  include-war-manifest-class-path="true" />
	-->
	<resource-ref-mapping name="jdbc/EDX-DS" />
	<security-role-mapping name="READ_index">
	</security-role-mapping>
	<security-role-mapping name="READ_ALL">
	</security-role-mapping>
	<security-role-mapping name="EDIT_ALL">
	</security-role-mapping>
	<security-role-mapping name="DELETE_ALL">
	</security-role-mapping>
	<ejb-ref-mapping name="edx/SecurityAccessBean" />
	<ejb-ref-mapping name="edx/TagLogicAccessBean" />
	<ejb-ref-mapping name="edx/TagMapAccessBean" />
	<ejb-ref-mapping name="edx/FilterMapAccessBean" />
	<ejb-ref-mapping name="edx/RouteAccessBean" />
	<ejb-ref-mapping name="edx/TemplateAccessBean" />
	<ejb-ref-mapping name="edx/PollerAccessBean" />
	<ejb-ref-mapping name="edx/MessageAccessBean" />
	<ejb-ref-mapping name="edx/DBTableAccessBean" />
	<ejb-ref-mapping name="edx/Sequencer" />
	<ejb-ref-mapping name="edx/InitializerBean" />
</orion-web-app>

Open in new window

jazn-data.txt
0
vijji_lakshmi
Asked:
vijji_lakshmi
1 Solution
 
muktajindalCommented:
It seems there are issues with assigning proper roles to the user. Are you sure that your application is able to assign the desired role to the user ?
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now