Return-Path: Delivered-To: apmail-geronimo-dev-archive@www.apache.org Received: (qmail 63338 invoked from network); 25 Aug 2006 12:00:37 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 25 Aug 2006 12:00:37 -0000 Received: (qmail 50017 invoked by uid 500); 25 Aug 2006 12:00:35 -0000 Delivered-To: apmail-geronimo-dev-archive@geronimo.apache.org Received: (qmail 49381 invoked by uid 500); 25 Aug 2006 12:00:34 -0000 Mailing-List: contact dev-help@geronimo.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: dev@geronimo.apache.org List-Id: Delivered-To: mailing list dev@geronimo.apache.org Received: (qmail 49370 invoked by uid 99); 25 Aug 2006 12:00:34 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 25 Aug 2006 05:00:34 -0700 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received: from [209.237.227.198] (HELO brutus.apache.org) (209.237.227.198) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 25 Aug 2006 05:00:33 -0700 Received: from brutus (localhost [127.0.0.1]) by brutus.apache.org (Postfix) with ESMTP id 97D007141E4 for ; Fri, 25 Aug 2006 11:57:23 +0000 (GMT) Message-ID: <7136618.1156507043617.JavaMail.jira@brutus> Date: Fri, 25 Aug 2006 04:57:23 -0700 (PDT) From: "Vamsavardhana Reddy (JIRA)" To: dev@geronimo.apache.org Subject: [jira] Updated: (GERONIMO-2274) realm-principal does not work in web app security In-Reply-To: <2053756.1154702713829.JavaMail.jira@brutus> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N [ http://issues.apache.org/jira/browse/GERONIMO-2274?page=all ] Vamsavardhana Reddy updated GERONIMO-2274: ------------------------------------------ Attachment: Geronimo-2274-tester.zip Geronimo-2274-tester.zip: Contains a realm plan and a test web app to verify if realm-principal is woking properly in security mapping. > realm-principal does not work in web app security > ------------------------------------------------- > > Key: GERONIMO-2274 > URL: http://issues.apache.org/jira/browse/GERONIMO-2274 > Project: Geronimo > Issue Type: Bug > Security Level: public(Regular issues) > Components: security > Affects Versions: 1.1 > Environment: WinXP, G1.1.1-SNAPSHOT, Tomcat > Reporter: Vamsavardhana Reddy > Assigned To: Alan Cabrera > Fix For: 1.2, 1.1.2 > > Attachments: Geronimo-2274-tester.zip, GERONIMO-2274.patch, geronimo-web.xml, sql-realm-advanced.xml > > > I have deployed a security realm with "wrap-principals" set to true. Then, I have deployed a web application to authenticate against this security realm. In the web app deployment plan, I have used realm-principal in role mapping. Even though login is successful, I am getting Error HTTP 403 Forbidden. Authorization works as expected if I use login-domain-principal or principal instead of realm-principal. Appears like realm-principal is not working as expected. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira