on 08-27-2008 11:24 PM
Hello
I must implement a JAAS module for 7.0 which tests based on the userid some UME propertys for the given user if he/she must login with user/pw.
In the module i return false in the login() method but it still doesn't work.
Have someone a similar example ?
Below you can see the trace of a successfull login but it should be failed or better calls the BasicAuthModul.
Regards
Gerald Eder
User: ederg
Authentication Stack: ticket
Login Module Flag Initialize Login Commit Abort Details
1. com.sap.security.core.server.jaas.EvaluateTicketLoginModule OPTIONAL ok true true
2. com.sap.security.core.server.jaas.SPNegoLoginModule OPTIONAL ok exception false Access Denied. No authorization header received.
3. ch.portal.jaas.OUdependenModulClass REQUISITE ok false false
4. com.sap.security.core.server.jaas.CreateTicketLoginModule SUFFICIENT ok false false
5. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule REQUISITE ok false false
6. com.sap.security.core.server.jaas.CreateTicketLoginModule OPTIONAL ok false false
7. com.sap.security.core.server.jaas.HeaderVariableLoginModule OPTIONAL ok false false
8. com.sap.security.core.server.jaas.CreateTicketLoginModule SUFFICIENT ok false false
Central Checks
Hello,
The user "ederg" was able to login because a corresponding SAP Logon Ticket was provided. As you can see the EvaluateTicketLoginModule returned true and logged in the user. However, the central check failed because the EvaluateTicketLoginModule did not stop the procedure but fell down to your OUdependenModulClass which returned false.
Basically, your stack is setup correctly with the flags. Please check the [flags semantics|http://java.sun.com/j2se/1.4.2/docs/api/javax/security/auth/login/Configuration.html].
Your LM stack should be:
1. com.sap.security.core.server.jaas.EvaluateTicketLoginModule SUFFICIENT
2. com.sap.security.core.server.jaas.SPNegoLoginModule OPTIONAL
3. ch.portal.jaas.OUdependenModulClass REQUISITE
4. com.sap.security.core.server.jaas.CreateTicketLoginModule SUFFICIENT
5. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule OPTIONAL
6. com.sap.security.core.server.jaas.CreateTicketLoginModule SUFFICIENT
7. com.sap.security.core.server.jaas.HeaderVariableLoginModule REQUISITE
8. com.sap.security.core.server.jaas.CreateTicketLoginModule OPTIONAL
Kind regards,
Tsvetomir
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Were having the same issue. Did you solve the problem?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
95 | |
11 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.