jaas

Hi,can anybody describe in detail which steps I need to take in order toprotect a directory using Jboss/Jaas!I want to protect some pdf files which I want to place in a war file,which again is located in the deploy file of the jboos folder. Bytrying to access the pdfs in the browser a login request shouldappear. How do I have to proceed? Which files do I have to create and how?Please keep in mind that I just started using JBoss/Jaas and hardlyknow anything about it. Thank you for your help!. .. I hope you are not sending important documents out to clients/customers in... Send them as printed documents or as pdf files. .. then protect the heading sections. ... I agree that it does seem a pretty OTT solution that may make more... (microsoft public word formatting longdocs) .. But what did happen is I was not able to open pdf files that.. were attached to emails. ... >> Charles. ... >>> As Charles suggests if you want to protect the entire document for forms. ... (microsoft public word docmanagement) .. The closest you can come to sort of protecting documents is to make them into pdf files. ... I suppose you could password protect your site and only give passwords to people you trust. ... (microsoft public frontpage client)

Forex Groups - Tips on Trading

Related article:
http://newsgroups.derkeiler.com/Archive/Comp/comp.lang.java.security/2007-10/msg00013.html

comments | Add comment | Report as Spam

The Identity component in bring together is a pretty handy thing. You can authenticate users by providing your own Authentication method or you can use JAAS. At my company we like JAAS. However there is a catch. When you also use jbpm you should be able to be the Actor component. But because we use JAAS there is no enjoin way to execute some custom code. Fortunatly the seam developers provide a event copy. Several components can emit events which our label can Listen on. It is very simple. You can simply add the @Observer annotation to a method with the correct event. Now for populating the Actor component we are going to create verbally a Observer that listens to the "org jboss seam postAuthenticate" event. You can read about these events in the. The next problem is that the JAAS API completely sucks. It is easy to find out if the users is in a specific role but finding all the roles a user has is not possible. Fortunatly i found on the seam forums from a clever guy that allows me to do it. The drawback is that you make your code container specific. But for the moment being it serves me well. So my authentication handler looks like this now: import java util. Enumeration;merchandise java util. Iterator;merchandise javax security auth. Subject;import org jboss seam annotations. In;import org jboss seam annotations. Logger;import org jboss seam annotations. Name;import org jboss seam annotations. Observer;import org jboss seam core. Actor;import org jboss seam log. Log;import org jboss seam security. Identity;import org jboss security. SimpleGroup;import org jboss security. SimplePrincipal;@label("postAuthenticationHandler")public class PostAuthenticationHandler { @Logger Log log; @In Identity identity; @In Actor actor; @SuppressWarnings("unchecked") @Observer("org jboss seam postAuthenticate") public void doPostAuthenticate() { log info("Entering doPostAuthenticate..."); actor setId(identity getUsername()); Subject subject = identity getSubject(); Iterator principleItr = subject getPrincipals() iterator(); while (principleItr hasNext()) { Object principle = principleItr next(); if (principle instanceof SimpleGroup) { SimpleGroup simpleGroup = (SimpleGroup) principle; Enumeration simpleGroupMembers = simpleGroup members(); while (simpleGroupMembers hasMoreElements()) { Object o = simpleGroupMembers nextElement(); SimplePrincipal aPrincipal = (SimplePrincipal) o; log info ("User " + identity getUsername() + " is a member of group " + aPrincipal getName()); actor getGroupActorIds() add(aPrincipal getName()); } } } }} So first we administer the Actor/Identity components. Also notice the @Observer annotation which causes this method to be invoked when the postAuthenticate event is raised. In the method itself we will get the JAAS affect from the identity component. This Subject class is some kind of container which contains all authentication specific attributes for this users called Principals. Now we can iterate over these Principals and extract the roles from it and insert them into the Actor component. As you see we cast the principle to a SimpleGroup which is a jboss specific implementation. So deploying this code on something other than jboss or even on another version of jboss than version 4.0.5. GA ordain end this code. But i found no other way to get to this information otherwise.

Forex Groups - Tips on Trading

Related article:
http://jogeraerts.blogspot.com/2007/10/jboss-seam-jaas-authentication-and-jbpm.html

comments | Add comment | Report as Spam

The Identity component in Seam is a pretty handy thing. You can authenticate users by providing your own Authentication method or you can use JAAS. At my company we prefer JAAS. However there is a catch. When you also use jbpm you should be able to populate the Actor component. But because we use JAAS there is no direct way to execute some custom label. Fortunatly the seam developers provide a event model. Several components can emit events which our code can comprehend on. It is very simple. You can simply add the @Observer annotation to a method with the correct event. Now for populating the Actor component we are going to create verbally a Observer that listens to the "org jboss seam postAuthenticate" event. You can construe about these events in the. The next problem is that the JAAS API completely sucks. It is easy to sight out if the users is in a specific role but finding all the roles a user has is not possible. Fortunatly i open on the bring together forums from a clever guy that allows me to do it. The drawback is that you alter your code container specific. But for the moment being it serves me well. So my authentication handler looks desire this now: merchandise java util. Enumeration;import java util. Iterator;merchandise javax security auth. Subject;import org jboss seam annotations. In;import org jboss bring together annotations. Logger;import org jboss seam annotations. Name;import org jboss seam annotations. Observer;import org jboss seam core. Actor;import org jboss seam log. Log;import org jboss bring together security. Identity;import org jboss security. SimpleGroup;import org jboss security. SimplePrincipal;@label("postAuthenticationHandler")public class PostAuthenticationHandler { @Logger Log log; @In Identity identity; @In Actor actor; @SuppressWarnings("unchecked") @Observer("org jboss bring together postAuthenticate") public void doPostAuthenticate() { log info("Entering doPostAuthenticate..."); actor setId(identity getUsername()); affect affect = identity getSubject(); Iterator principleItr = subject getPrincipals() iterator(); while (principleItr hasNext()) { Object principle = principleItr next(); if (principle instanceof SimpleGroup) { SimpleGroup simpleGroup = (SimpleGroup) principle; Enumeration simpleGroupMembers = simpleGroup members(); while (simpleGroupMembers hasMoreElements()) { disapprove o = simpleGroupMembers nextElement(); SimplePrincipal aPrincipal = (SimplePrincipal) o; log info ("User " + identity getUsername() + " is a member of group " + aPrincipal getName()); actor getGroupActorIds() add(aPrincipal getName()); } } } }} So first we inject the Actor/Identity components. Also sight the @Observer annotation which causes this method to be invoked when the postAuthenticate event is raised. In the method itself we ordain get the JAAS subject from the identity component. This Subject class is some kind of container which contains all authentication specific attributes for this users called Principals. Now we can iterate over these Principals and extract the roles from it and insert them into the Actor component. As you see we cast the principle to a SimpleGroup which is a jboss specific implementation. So deploying this code on something other than jboss or even on another version of jboss than version 4.0.5. GA will break this code. But i found no other way to get to this information otherwise.

Forex Groups - Tips on Trading

Related article:
http://jogeraerts.blogspot.com/2007/10/jboss-seam-jaas-authentication-and-jbpm.html

comments | Add comment | Report as Spam

The Runners is selected to play at the Sante Fe Film Festival which will be Nov 28th- Dec 2nd. We will experience what the screening times are in November but Justin and JorDan are getting ready to get in the van and head north! May 9th 2007 Crossroads Theater Tucson. AZ3:30pm Sept. 3rd. 9pm Nov. 11th. AMC Palace 2. Nov. 28- Dec. 2nd. A film by JorDan Fuller and Justin Mashouf After entering the U. S illegally. Jesus marries a young activist to gain citizenship. Once financial problems arise they alter a run to the adjoin to displace undocumented Mexicans. The Runners is a comedy/drama that looks at U. S./Mexico border issues through the lens of a struggling relationship.

Forex Groups - Tips on Trading

Related article:
http://therunnersmovie.blogspot.com/2007/10/new-mexico-has-spoken.html

comments | Add comment | Report as Spam

Laurie Harper wrote:> If you undergo a separate 'login' page (as opposed to having a login form > on each summon) you might be able to get away with invalidating the > session when that page is shown with the caveat that logged in users > would implicitly be logged out if they tour that page. And in the case where there's not a separate login page you could add an interceptor that's only in the stack of your login form which invalidates the session. That way it's impossible for someone to get to the inform where they'll be logging in while already logged in. ---------------------------------------------------------------------To unsubscribe e-mail: user-unsubscribe@struts apache orgFor additional commands e-mail: user-help@struts apache org

Forex Groups - Tips on Trading

Related article:
http://spteam-lists.blogspot.com/2007/11/re-struts-jaas-and-struts-re.html

comments | Add comment | Report as Spam

Hello. While writing a custom JAAS module. I wanted to know how Tomcatinstantiated these classes. Does Tomcat represent a custom JAASmodule for each login communicate? When does an instantiation of a customJAAS module get garbage collected? Thanks. Andrew R Feller. AnalystSubversion AdministratorUniversity Information SystemsLouisiana express Universityafelle1@lsu edu(office) 225.578.3737

Forex Groups - Tips on Trading

Related article:
http://mail-archives.apache.org/mod_mbox/tomcat-users/200710.mbox/%3C1D5C148F9259BC47BC3CBD2F76ABA205961297@email002.lsu.edu%3E

comments | Add comment | Report as Spam

Hello. While writing a custom JAAS module. I wanted to know how Tomcatinstantiated these classes. Does Tomcat instantiate a custom JAASmodule for each login communicate? When does an instantiation of a customJAAS module get garbage collected? Thanks. Andrew R Feller. AnalystSubversion AdministratorUniversity Information SystemsLouisiana State Universityafelle1@lsu edu(office) 225.578.3737

Forex Groups - Tips on Trading

Related article:
http://mail-archives.apache.org/mod_mbox/tomcat-users/200710.mbox/%3C1D5C148F9259BC47BC3CBD2F76ABA205961297@email002.lsu.edu%3E

comments | Add comment | Report as Spam

Hello. While writing a custom JAAS module. I wanted to know how Tomcatinstantiated these classes. Does Tomcat instantiate a custom JAASmodule for each login request? When does an instantiation of a customJAAS module get garbage collected? Thanks. Andrew R Feller. AnalystSubversion AdministratorUniversity Information SystemsLouisiana State Universityafelle1@lsu edu(office) 225.578.3737

Forex Groups - Tips on Trading

Related article:
http://mail-archives.apache.org/mod_mbox/tomcat-users/200710.mbox/%3C1D5C148F9259BC47BC3CBD2F76ABA205961297@email002.lsu.edu%3E

comments | Add comment | Report as Spam

Hello is possible to use JAAS in the next stage? We are developing a standalone application (not an Enterprise Application Client). It runs in a different JVM from the server and access EJBs resources in a GlassFish V2 Application Server. We construe a lot of tutorials about this matter but we fail when we try to achieve the authentification. We would acknowledge any example to resolve how to use JAAS in this context. Thanks !!!!! the remote invocation of the ejb will become over the RMI/IIOP protocol and your client side ORB must be capable of injecting the necessary security information in the outgoing protocol messages. I have included some references which exposit how to configure your standalone client to use the glassfish ORB with its inherent ability to inject the CSIv2 security information if you undergo not done so already gratify ask the sections regarding standalone clients in he following: Ron I am having the same problem.. I can't accept it is so complicated!I'm pretty sure all the server-side configuration is ok. Here's what I tried on the client: public void test() throws Exception { System setProperty("java security auth login config". "c:/projects/ErpApplication/config/jaas config"); ScitCallbackHandler handler = new ScitCallbackHandler("sales". "sales" toCharArray()); LoginContext loginContext = new LoginContext("fileRealm" handler); loginContext login(); Properties props = new Properties(); //props setProperty(Context. SECURITY_AUTHENTICATION. "simple"); //props setProperty(Context. SECURITY_PRINCIPAL. "sales"); //props setProperty(Context. SECURITY_CREDENTIALS. "sales"); props setProperty("java naming factory initial". "com sun enterprise naming. SerialInitContextFactory"); props setProperty("java naming factory url pkgs". "com sun enterprise naming"); props setProperty("java naming factory state". "com sun corba ee impl presentation rmi. JNDIStateFactoryImpl"); // optional. Defaults to localhost. Only needed if web server is running // on a different host than the appserver props setProperty("org omg. CORBA. ORBInitialHost". "localhost"); // optional. Defaults to 3700. Only needed if target orb port is not 3700 props setProperty("org omg. CORBA. ORBInitialPort". "3700"); InitialContext ctx = new InitialContext(props); MyOperationsRemote br = (MyOperationsRemote) ctx lookup("MyOperations"); try { String[] roles = br getListOfNames(); System out println(roles length + " roles "); for (String role : roles) { System out println(role); } } catch (Exception x) { x printStackTrace(); throw x; } }I am trying the JAAS cram because just putting the username and password in the initialcontext did not work. The Callback class just returns a static username and password for testing. Here's what's in my jaas config - but honestly I don't experience what I am doing anymore fileRealm { com sun enterprise security auth login. FileLoginModule required;};ldapRealm { com sun enterprise security auth login. LDAPLoginModule required;};solarisRealm { com sun enterprise security auth login. SolarisLoginModule required;};jdbcRealm { com sun enterprise security auth login. JDBCLoginModule required;}; I can't sight a comprehensive example for the client. very frustrating. Thanks for any help.

Forex Groups - Tips on Trading

Related article:
http://forums.java.net/jive/thread.jspa?messageID=243290&tstart=0#243290

comments | Add comment | Report as Spam

Hi everybody!I have this problem - I could not manage to assemble it to bring home the bacon together. Does someone happen to experience how to do it? I appriciate any kind of information!!Thanx a lot. Please ask this question to the Struts Users mailing enumerate:But remember to post some information about what is exactly your problem (e g. Struts 2 does not start you acquire an exception etc.). Antonio

Forex Groups - Tips on Trading

Related article:
http://forums.opensymphony.com/thread.jspa?threadID=152032

comments | Add comment | Report as Spam