Skip to Main Content
Forums

Java Development Tools

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Security, Thanks Frank, a question on your example

563430Apr 9 2007 — edited May 7 2007
Frank

Thanks again.

Based on what you said, I am trying your example on "Declarative J2EE auth and auth with JAAS." I will start with container managed security and use J2EE auth and J2EE sec. I will still have to figure out how to selectively manage the tables in my app based on roles. But, more about that later.

I have created the tables needed. I wanted to try first with the default LoginModule and not use any custom LoginModules your sample talks about.

I ran the jaastester.java first and I seem to have some success.
(See Log
pr 9, 2007 12:44:39 PM oracle.sample.dbloginmodule.util.JavaLoggerImpl print
INFO: [DBTableLoginModule] DBUser Principal Name: Han Solo

Apr 9, 2007 12:44:39 PM oracle.sample.dbloginmodule.util.JavaLoggerImpl print
INFO: [DBTableLoginModule] DBRole Principal Name: User

Apr 9, 2007 12:44:39 PM oracle.sample.dbloginmodule.util.JavaLoggerImpl print
INFO: [DBTableLoginModule] DBRole Principal Name: Manager

Apr 9, 2007 12:44:39 PM oracle.sample.dbloginmodule.util.JavaLoggerImpl print
INFO: [DBTableLoginModule] DBRole Principal Name: Content Owner

Apr 9, 2007 12:44:39 PM oracle.sample.dbloginmodule.util.JavaLoggerImpl print
INFO: [DBTableLoginModule] Logon Successful = true

Apr 9, 2007 12:44:39 PM oracle.sample.dbloginmodule.util.JavaLoggerImpl print
INFO: [DBTableLoginModule] Subject contains 0 Principals before auth

Apr 9, 2007 12:44:39 PM oracle.sample.dbloginmodule.util.JavaLoggerImpl print
INFO: [DBTableLoginModule] Local LM commit succeeded

Apr 9, 2007 12:44:39 PM oracle.sample.dbloginmodule.util.JavaLoggerImpl print
INFO: [DBTableLoginModule] Subject contains 4 Principals after auth

Sounds good but one problem (See below)

This is my set up

db_schema="SECURITYTESTER"

db_schema_pw="oracle"

I was excited and tried to run authtest.jsp under DLMTest. However, when I entered "Han Solo" the DBLoginModuleTest did not do anything. What could be wrong. Obviously it did not authorize!!!!

Is there something I have to do so that authtest.jsp connects to the right schema?
Thanks
P.S. Is there a good book that explains some basics? Obviously, I am getting mixed up with J2EE Security and ADF BC Security, J2EE Roles and ADF roles etc.

null
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on Jun 4 2007
Added on Apr 9 2007
#application-development-in-java, #jdeveloper-and-adf
6 comments
1,156 views