glassfish
  1. glassfish
  2. GLASSFISH-20485

appclient -user xxx option is ignored unless -passwordfile is given

    Details

    • Type: Bug Bug
    • Status: Open
    • Priority: Major Major
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: future release
    • Component/s: security
    • Labels:
      None
    • Environment:

      GlassFish 3.1.1, Win 7 Pro SP 1 (64 Bit), JDK 1.7.0_21

      Description

      Steps to reproduce:

      • appclient -name myname -client MyClient.jar

      Expected result:

      • Login dialog should default user name to "myname".

      Actual result:

      • Login dialog defaults user name to Windows Account.

        Activity

        Hide
        Tim Quinn added a comment -

        Updated title and component; this applies to the appclient utility

        Show
        Tim Quinn added a comment - Updated title and component; this applies to the appclient utility
        Hide
        Tim Quinn added a comment -

        The "-name" option on the appclient command specifies the name of the app client to be executed (especially if there are multiple app clients in the EAR), not to tell what username to use for authentication.

        The "-user" option is used for specifying the username on the command line.

        Markus, can you please confirm whether you are actually using "-name" or "-user" in your example?

        Show
        Tim Quinn added a comment - The "-name" option on the appclient command specifies the name of the app client to be executed (especially if there are multiple app clients in the EAR), not to tell what username to use for authentication. The "-user" option is used for specifying the username on the command line. Markus, can you please confirm whether you are actually using "-name" or "-user" in your example?
        Hide
        mkarg added a comment -

        Sorry for the typos, I was in a hurry.

        Actually I typed:

        appclient -user myname -Client MyClient.jar

        And the ACC's login dialog Shows the user Name field defautled to the value "MARKUS KARG" (which seems to be taken from active directory), but not "myname".

        Show
        mkarg added a comment - Sorry for the typos, I was in a hurry. Actually I typed: appclient -user myname -Client MyClient.jar And the ACC's login dialog Shows the user Name field defautled to the value "MARKUS KARG" (which seems to be taken from active directory), but not "myname".
        Hide
        Tim Quinn added a comment -

        I am reassigning this to the security team.

        The app client container invokes AppClientSecurityInfoImpl's constructor, passing the username (if the user provided one on the command line, null otherwise).

        I looked around a little and it seems that ClientPasswordLoginModule interrogates the UsernamePasswordStore to retrieve a user-provided username and/or password but the code seems not to use those values (I concentrated on the username) in setting the default value in the callback.

        Show
        Tim Quinn added a comment - I am reassigning this to the security team. The app client container invokes AppClientSecurityInfoImpl's constructor, passing the username (if the user provided one on the command line, null otherwise). I looked around a little and it seems that ClientPasswordLoginModule interrogates the UsernamePasswordStore to retrieve a user-provided username and/or password but the code seems not to use those values (I concentrated on the username) in setting the default value in the callback.

          People

          • Assignee:
            JeffTancill
            Reporter:
            mkarg
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated: