Solved

Error after configuring the custom Login Module using JAAS in Oracle 10g AS  for J2EE 9 .0.4

Posted on 2008-10-30
1
918 Views
Last Modified: 2013-12-12
After I have configured custom login module in oc4j and deploy the application, it was giving me the following error for all the group names when i access the application index page

Membership check for group: EDIT_ALL failed for user: jazn.com/anonymous
Membership check for group: DELETE_ALL failed for user: jazn.com/anonymous
Membership check for group: READ_index failed for user: jazn.com/anonymous
Membership check for group: READ_ALL failed for user: jazn.com/anonymous

I have my custom class and its dependency classes are there in the classpath, the control is not even going there to Custom Login code.

I have attached the jazn-data.xml.

Can any please let me know how to resolve this problem.
am i missing something?



Following were the configuration changes i have made.

I have included the entry in C:\oracle\product\904\oracleas_1\j2ee\home\config\jazn-data.xml

<jazn-loginconfig>

<application> 		

	<name>EDX</name>

	<login-modules>

		<login-module>

				<class>com.sungard.edx.security.oc4j.EDXLoginModule</class>

				<control-flag>required</control-flag>

			<options>

				<option>

					<name>data_source_name</name>

					<value>jdbc/EDX-DS</value>

				</option>

				<option>

					<name>debug</name>

					<value>true</value>

				</option>

				<option>

					<name>application_realm</name>

					<value>EDX</value>

				</option>

				<option>

					<name>log_level</name>

					<value>ALL</value>

				</option>

			</options>

		</login-module>

	</login-modules>

</application>

</jazn-loginconfig>
 
 

orion-application.xml
 

<orion-application deployment-version="9.0.4.0.0" default-data-source="jdbc/OracleDS" treat-zero-as-null="true">

	<ejb-module remote="false" path="edx.jar" /> 

	<web-module id="edxgui" path="edxgui.war" />

	<web-module id="axis" path="axis.war" />

	<security-role-mapping name="READ_index">

		<group name="READ_index" />

	</security-role-mapping>

	<security-role-mapping name="READ_ALL">

		<group name="READ_ALL" />

	</security-role-mapping>

	<security-role-mapping name="EDIT_ALL">

		<group name="EDIT_ALL" />

	</security-role-mapping>

	<security-role-mapping name="DELETE_ALL">

		<group name="DELETE_ALL" />

	</security-role-mapping>

	<persistence path="persistence" />

	<principals path="principals.xml" />

	<jazn provider="XML" >

		<property name="role.mapping.dynamic" value="true" />

	</jazn>

	<log>

		<file path="application.log" />

	</log>

</orion-application>
 

orion-web.xml
 

<?xml version="1.0"?>

<!DOCTYPE orion-web-app PUBLIC "-//ORACLE//DTD OC4J Web Application 9.04//EN" "http://xmlns.oracle.com/ias/dtds/orion-web-9_04.dtd">
 

<orion-web-app

	deployment-version="9.0.4.0.0"

	temporary-directory="./temp"

	internationalize-resources="false"

	default-mime-type="application/octet-stream"

>

	<!-- Uncomment this element to control web application class loader behavior.

		<web-app-class-loader search-local-classes-first="true"  include-war-manifest-class-path="true" />

	-->

	<resource-ref-mapping name="jdbc/EDX-DS" />

	<security-role-mapping name="READ_index">

	</security-role-mapping>

	<security-role-mapping name="READ_ALL">

	</security-role-mapping>

	<security-role-mapping name="EDIT_ALL">

	</security-role-mapping>

	<security-role-mapping name="DELETE_ALL">

	</security-role-mapping>

	<ejb-ref-mapping name="edx/SecurityAccessBean" />

	<ejb-ref-mapping name="edx/TagLogicAccessBean" />

	<ejb-ref-mapping name="edx/TagMapAccessBean" />

	<ejb-ref-mapping name="edx/FilterMapAccessBean" />

	<ejb-ref-mapping name="edx/RouteAccessBean" />

	<ejb-ref-mapping name="edx/TemplateAccessBean" />

	<ejb-ref-mapping name="edx/PollerAccessBean" />

	<ejb-ref-mapping name="edx/MessageAccessBean" />

	<ejb-ref-mapping name="edx/DBTableAccessBean" />

	<ejb-ref-mapping name="edx/Sequencer" />

	<ejb-ref-mapping name="edx/InitializerBean" />

</orion-web-app>

Open in new window

jazn-data.txt
0
Comment
Question by:vijji_lakshmi
1 Comment
 
LVL 5

Accepted Solution

by:
muktajindal earned 500 total points
ID: 22873544
It seems there are issues with assigning proper roles to the user. Are you sure that your application is able to assign the desired role to the user ?
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Suggested Solutions

A high-level exploration of how our ever-increasing access to information has changed the way we do our jobs.
I use more than 1 computer in my office for various reasons. Multiple keyboards and mice take up more than just extra space, they make working a little more complicated. Using one mouse and keyboard for all of my computers makes life easier. This co…
The viewer will learn how to create multiple layers to apply various filters and how to delete areas from each layer’s filter.
The viewer will learn how to implement Singleton Design Pattern in Java.

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now