glassfish
  1. glassfish
  2. GLASSFISH-20890

Arbitrary iiop.authenticate_exception in ACC session

    Details

    • Type: Bug Bug
    • Status: Open
    • Priority: Major Major
    • Resolution: Unresolved
    • Affects Version/s: 4.0_b89_RC5
    • Fix Version/s: None
    • Component/s: None
    • Labels:
      None
    • Environment:

      centos 6.3, jdk 1.7.0_45

      Description

      In an authenticated ACC session started via Webstart we receive java.rmi.AccessException: CORBA NO_PERMISSION 0 frequently, although the client is logged in. The remote call will be executed in a 2nd call successfully. The authentication module is the JDBCLoginModule connected to postgres 9.1.

      authentication exception
      [2013-11-08T17:25:05.919+0100] [glassfish 4.0] [FINE] [] [javax.enterprise.system.core.security.com.sun.enterprise.iiop.security] [tid: _ThreadID=138 _ThreadName=p: thread-pool-1; w: 6] [timeMillis: 1383927905919] [levelValue: 500] [CLASSNAME: com.sun.enterprise.iiop.security.CSIV2TaggedComponentInfo] [METHODNAME: createASContextSec] [[
        IIOP: Creating AS_Context]]
      
      [2013-11-08T17:25:05.919+0100] [glassfish 4.0] [FINE] [] [javax.enterprise.system.core.security.com.sun.enterprise.iiop.security] [tid: _ThreadID=138 _ThreadName=p: thread-pool-1; w: 6] [timeMillis: 1383927905919] [levelValue: 500] [CLASSNAME: com.sun.enterprise.iiop.security.CSIV2TaggedComponentInfo] [METHODNAME: createASContextSec] [[
        IIOP:AS_Context: Realm Name for login = myRealm]]
      
      [2013-11-08T17:25:05.919+0100] [glassfish 4.0] [FINE] [] [javax.enterprise.system.core.security.com.sun.enterprise.iiop.security] [tid: _ThreadID=138 _ThreadName=p: thread-pool-1; w: 6] [timeMillis: 1383927905919] [levelValue: 500] [CLASSNAME: com.sun.enterprise.iiop.security.SecurityMechanismSelector] [METHODNAME: evaluate_client_conformance] [[
        SecurityMechanismSelector.evaluate_client_conformance: evaluate_client_conformance_ascontext]]
      
      [2013-11-08T17:25:05.919+0100] [glassfish 4.0] [FINE] [] [javax.enterprise.system.core.security.com.sun.enterprise.iiop.security] [tid: _ThreadID=138 _ThreadName=p: thread-pool-1; w: 6] [timeMillis: 1383927905919] [levelValue: 500] [CLASSNAME: com.sun.enterprise.iiop.security.SecurityContextUtil] [METHODNAME: setSecurityContext] [[
        iiop.authenticate_exception]]
      
      [2013-11-08T17:25:05.919+0100] [glassfish 4.0] [FINE] [] [javax.enterprise.system.core.security.com.sun.enterprise.iiop.security] [tid: _ThreadID=138 _ThreadName=p: thread-pool-1; w: 6] [timeMillis: 1383927905919] [levelValue: 500] [CLASSNAME: com.sun.enterprise.iiop.security.SecurityContextUtil] [METHODNAME: setSecurityContext] [[
        Authentication Exception
      com.sun.enterprise.iiop.security.SecurityMechanismException: Trust evaluation failed because client does not conform to configured security policies
      	at com.sun.enterprise.iiop.security.SecurityMechanismSelector.evaluateTrust(SecurityMechanismSelector.java:1517)
      	at com.sun.enterprise.iiop.security.SecurityContextUtil.setSecurityContext(SecurityContextUtil.java:198)
      	at com.sun.enterprise.iiop.security.SecServerRequestInterceptor.receive_request(SecServerRequestInterceptor.java:567)
      
      
      successful authentication
      [2013-11-08T17:25:05.931+0100] [glassfish 4.0] [FINE] [] [javax.enterprise.system.core.security.com.sun.enterprise.iiop.security] [tid: _ThreadID=84 _ThreadName=p: thread-pool-1; w: 4] [timeMillis: 1383927905931] [levelValue: 500] [CLASSNAME: com.sun.enterprise.iiop.security.CSIV2TaggedComponentInfo] [METHODNAME: createASContextSec] [[
        IIOP: Creating AS_Context]]
      
      [2013-11-08T17:25:05.931+0100] [glassfish 4.0] [FINE] [] [javax.enterprise.system.core.security.com.sun.enterprise.iiop.security] [tid: _ThreadID=84 _ThreadName=p: thread-pool-1; w: 4] [timeMillis: 1383927905931] [levelValue: 500] [CLASSNAME: com.sun.enterprise.iiop.security.CSIV2TaggedComponentInfo] [METHODNAME: createASContextSec] [[
        IIOP:AS_Context: Realm Name for login = myRealm]]
      
      [2013-11-08T17:25:05.931+0100] [glassfish 4.0] [FINE] [] [javax.enterprise.system.core.security.com.sun.enterprise.iiop.security] [tid: _ThreadID=84 _ThreadName=p: thread-pool-1; w: 4] [timeMillis: 1383927905931] [levelValue: 500] [CLASSNAME: com.sun.enterprise.iiop.security.CSIV2TaggedComponentInfo] [METHODNAME: createSASContextSec] [[
        IIOP: Creating SAS_Context]]
      
      [2013-11-08T17:25:05.931+0100] [glassfish 4.0] [FINE] [] [javax.enterprise.system.core.security.com.sun.enterprise.security.auth.login] [tid: _ThreadID=84 _ThreadName=p: thread-pool-1; w: 4] [timeMillis: 1383927905931] [levelValue: 500] [CLASSNAME: com.sun.enterprise.security.auth.login.LoginContextDriver] [METHODNAME: doPasswordLogin] [[
        Logging in user [XXX] into realm: myRealm using JAAS module: jdbcRealm]]
      
      [2013-11-08T17:25:05.931+0100] [glassfish 4.0] [FINE] [] [javax.enterprise.system.core.security.com.sun.enterprise.security] [tid: _ThreadID=84 _ThreadName=p: thread-pool-1; w: 4] [timeMillis: 1383927905931] [levelValue: 500] [CLASSNAME: com.sun.enterprise.security.BasePasswordLoginModule] [METHODNAME: initialize] [[
        Login module initialized: class com.sun.enterprise.security.ee.auth.login.JDBCLoginModule]]
      
      [2013-11-08T17:25:05.933+0100] [glassfish 4.0] [FINE] [] [javax.enterprise.system.core.security.com.sun.enterprise.security] [tid: _ThreadID=84 _ThreadName=p: thread-pool-1; w: 4] [timeMillis: 1383927905933] [levelValue: 500] [CLASSNAME: com.sun.enterprise.security.BasePasswordLoginModule] [METHODNAME: login] [[
        JAAS login complete.]]
      
      

        Activity

        There are no comments yet on this issue.

          People

          • Assignee:
            michael.y.chen
            Reporter:
            andydr
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated: