WLS8.1sp2 - 2 SUFFICIENT ATNProviders - Weblogic

This is a discussion on WLS8.1sp2 - 2 SUFFICIENT ATNProviders - Weblogic ; I wrote 2 ATN Providers each one with its own LoginModule. Each LoginModule is given back in the getLogInModule method as SUFFICIENT (LoginModuleControilFlag). If the first one fail (login() returns false) the second one is never called. Any suggestion? ckHandler@1d4ab05> ...

+ Reply to Thread
Results 1 to 2 of 2

Thread: WLS8.1sp2 - 2 SUFFICIENT ATNProviders

  1. WLS8.1sp2 - 2 SUFFICIENT ATNProviders


    I wrote 2 ATN Providers each one with its own LoginModule. Each LoginModule is
    given back in the getLogInModule method as SUFFICIENT (LoginModuleControilFlag).
    If the first one fail (login() returns false) the second one is never called.
    Any suggestion?

    <07.06.2004 18.20 Uhr CEST>
    <000000>
    <07.06.2004 18.20 Uhr CEST>
    <000000>
    <07.06.2004 18.20 Uhr CEST> <000000>

    <07.06.2004 18.20 Uhr CEST> <000000>
    ckHandler@1d4ab05>
    <07.06.2004 18.20 Uhr CEST> <000000>
    ity.provider.PrincipalValidatorImpl@ec436, MY_BEAN=Security:Name=CSRealmCSIdentityAsserter,
    SecurityProvider=com.csg.cs.security.wls.authentic ation.Id
    entityAsserterProviderImpl@173eca6, PrincipalBuilder=com.csg.cs.security.wls.extension s.impl.WLSUserImplBuilder@1b5a5cf}>
    <07.06.2004 18.20 Uhr CEST> <000000>

    >
    <07.06.2004 18.20 Uhr CEST> <000000>

    <07.06.2004 18.20 Uhr CEST> <000000>

    <07.06.2004 18.20 Uhr CEST> <000000>

    javax.security.auth.callback.NameCallback@127f4f9
    class javax.security.auth.callback.NameCallback
    javax.security.auth.callback.PasswordCallback@4433 1c
    class javax.security.auth.callback.PasswordCallback
    <07.06.2004 18.20 Uhr CEST> <000000>

    <07.06.2004 18.20 Uhr CEST> <000000>

    javax.security.auth.login.LoginException: Username not supplied.
    at com.csg.cs.security.wls.authentication.LoginModule Impl.throwLoginException(LoginModuleImpl.java:296)
    at com.csg.cs.security.wls.authentication.LoginModule Impl.getUserName(LoginModuleImpl.java:379)
    at com.csg.cs.security.wls.authentication.LoginModule Impl.login(LoginModuleImpl.java:161)
    at weblogic.security.service.DelegateLoginModuleImpl. login(DelegateLoginModuleImpl.java:71)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Nativ e Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(Native MethodAccessorImpl.java:39)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(De legatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:324)
    at javax.security.auth.login.LoginContext.invoke(Logi nContext.java:675)
    at javax.security.auth.login.LoginContext.access$000( LoginContext.java:129)
    at javax.security.auth.login.LoginContext$4.run(Login Context.java:610)
    at java.security.AccessController.doPrivileged(Native Method)
    at javax.security.auth.login.LoginContext.invokeModul e(LoginContext.java:607)
    at javax.security.auth.login.LoginContext.login(Login Context.java:534)
    at weblogic.security.service.PrincipalAuthenticator.a uthInternal(PrincipalAuthenticator.java:326)
    at weblogic.security.service.PrincipalAuthenticator.a uthenticate(PrincipalAuthenticator.java:279)
    at weblogic.servlet.security.ServletAuthentication.au thenticate(ServletAuthentication.java:539)
    at com.csg.cs.security.wls.authorization.WebApplicati onHandler.handleAuxLogIn(WebApplicationHandler.jav a:124)
    at com.csg.cs.security.wls.authorization.WebApplicati onHandler.authenticate(WebApplicationHandler.java: 69)
    at com.csg.cs.security.wls.authorization.Authorizatio nProviderImpl.isAccessAllowed(AuthorizationProvide rImpl.java:265)
    at weblogic.security.service.AuthorizationManager.isA ccessAllowed(AuthorizationManager.java:558)
    at weblogic.security.service.AuthorizationManager.isA ccessAllowed(AuthorizationManager.java:697)
    at weblogic.servlet.security.internal.WebAppSecurity. hasPermission(WebAppSecurity.java:567)
    at weblogic.servlet.security.internal.SecurityModule. checkPerm(SecurityModule.java:134)
    at weblogic.servlet.security.internal.FormSecurityMod ule.checkUserPerm(FormSecurityModule.java:387)
    at weblogic.servlet.security.internal.SecurityModule. beginCheck(SecurityModule.java:197)
    at weblogic.servlet.security.internal.FormSecurityMod ule.checkA(FormSecurityModule.java:181)
    at weblogic.servlet.security.internal.ServletSecurity Manager.checkAccess(ServletSecurityManager.java:14 5)
    at weblogic.servlet.internal.WebAppServletContext.inv okeServlet(WebAppServletContext.java:3539)
    at weblogic.servlet.internal.ServletRequestImpl.execu te(ServletRequestImpl.java:2585)
    at weblogic.kernel.ExecuteThread.execute(ExecuteThrea d.java:197)
    at weblogic.kernel.ExecuteThread.run(ExecuteThread.ja va:170)
    <07.06.2004 18.20 Uhr CEST> <000000>

    <07.06.2004 18.20 Uhr CEST> <000000>

    <07.06.2004 18.20 Uhr CEST> <000000>

    <07.06.2004 18.20 Uhr CEST> <000000>

    <07.06.2004 18.20 Uhr CEST> <000000>

    <07.06.2004 18.20 Uhr CEST>
    <000000>
    <07.06.2004 18.20 Uhr CEST>
    <000000>
    <07.06.2004 18.20 Uhr CEST>
    <000000>
    <07.06.2004 18.20 Uhr CEST>
    <000000>
    <07.06.2004 18.20 Uhr CEST>
    <000000>

  2. Re: WLS8.1sp2 - 2 SUFFICIENT ATNProviders


    "Carlo de Rossi" wrote:
    >
    >I wrote 2 ATN Providers each one with its own LoginModule. Each LoginModule
    >is
    >given back in the getLogInModule method as SUFFICIENT (LoginModuleControilFlag).
    >If the first one fail (login() returns false) the second one is never
    >called.
    >Any suggestion?
    >
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    >
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    > >ckHandler@1d4ab05>
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    > >ity.provider.PrincipalValidatorImpl@ec436, MY_BEAN=Security:Name=CSRealmCSIdentityAsserter,
    >SecurityProvider=com.csg.cs.security.wls.authentic ation.Id
    >entityAsserterProviderImpl@173eca6, PrincipalBuilder=com.csg.cs.security.wls.extension s.impl.WLSUserImplBuilder@1b5a5cf}>
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    >
    >>

    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    >
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    >
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    >
    >javax.security.auth.callback.NameCallback@127f4f9
    >class javax.security.auth.callback.NameCallback
    >javax.security.auth.callback.PasswordCallback@4433 1c
    >class javax.security.auth.callback.PasswordCallback
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    >
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    >
    >javax.security.auth.login.LoginException: Username not supplied.
    > at com.csg.cs.security.wls.authentication.LoginModule Impl.throwLoginException(LoginModuleImpl.java:296)
    > at com.csg.cs.security.wls.authentication.LoginModule Impl.getUserName(LoginModuleImpl.java:379)
    > at com.csg.cs.security.wls.authentication.LoginModule Impl.login(LoginModuleImpl.java:161)
    > at weblogic.security.service.DelegateLoginModuleImpl. login(DelegateLoginModuleImpl.java:71)
    > at sun.reflect.NativeMethodAccessorImpl.invoke0(Nativ e Method)
    > at sun.reflect.NativeMethodAccessorImpl.invoke(Native MethodAccessorImpl.java:39)
    > at sun.reflect.DelegatingMethodAccessorImpl.invoke(De legatingMethodAccessorImpl.java:25)
    > at java.lang.reflect.Method.invoke(Method.java:324)
    > at javax.security.auth.login.LoginContext.invoke(Logi nContext.java:675)
    > at javax.security.auth.login.LoginContext.access$000( LoginContext.java:129)
    > at javax.security.auth.login.LoginContext$4.run(Login Context.java:610)
    > at java.security.AccessController.doPrivileged(Native Method)
    > at javax.security.auth.login.LoginContext.invokeModul e(LoginContext.java:607)
    > at javax.security.auth.login.LoginContext.login(Login Context.java:534)
    > at weblogic.security.service.PrincipalAuthenticator.a uthInternal(PrincipalAuthenticator.java:326)
    > at weblogic.security.service.PrincipalAuthenticator.a uthenticate(PrincipalAuthenticator.java:279)
    > at weblogic.servlet.security.ServletAuthentication.au thenticate(ServletAuthentication.java:539)
    > at com.csg.cs.security.wls.authorization.WebApplicati onHandler.handleAuxLogIn(WebApplicationHandler.jav a:124)
    > at com.csg.cs.security.wls.authorization.WebApplicati onHandler.authenticate(WebApplicationHandler.java: 69)
    > at com.csg.cs.security.wls.authorization.Authorizatio nProviderImpl.isAccessAllowed(AuthorizationProvide rImpl.java:265)
    > at weblogic.security.service.AuthorizationManager.isA ccessAllowed(AuthorizationManager.java:558)
    > at weblogic.security.service.AuthorizationManager.isA ccessAllowed(AuthorizationManager.java:697)
    > at weblogic.servlet.security.internal.WebAppSecurity. hasPermission(WebAppSecurity.java:567)
    > at weblogic.servlet.security.internal.SecurityModule. checkPerm(SecurityModule.java:134)
    > at weblogic.servlet.security.internal.FormSecurityMod ule.checkUserPerm(FormSecurityModule.java:387)
    > at weblogic.servlet.security.internal.SecurityModule. beginCheck(SecurityModule.java:197)
    > at weblogic.servlet.security.internal.FormSecurityMod ule.checkA(FormSecurityModule.java:181)
    > at weblogic.servlet.security.internal.ServletSecurity Manager.checkAccess(ServletSecurityManager.java:14 5)
    > at weblogic.servlet.internal.WebAppServletContext.inv okeServlet(WebAppServletContext.java:3539)
    > at weblogic.servlet.internal.ServletRequestImpl.execu te(ServletRequestImpl.java:2585)
    > at weblogic.kernel.ExecuteThread.execute(ExecuteThrea d.java:197)
    > at weblogic.kernel.ExecuteThread.run(ExecuteThread.ja va:170)
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    >
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    >
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    >
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    >
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    >
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>
    ><07.06.2004 18.20 Uhr CEST>
    ><000000>

    exceptions thrown from myLoginModule.initialize are no traced, but a failure in
    initialization cause the LogModule to be never called. so, be careful in tracing
    exceptions.
    best regards


+ Reply to Thread