geronimo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Paul McMahan (JIRA)" <j...@apache.org>
Subject [jira] Updated: (GERONIMO-2435) Shutdown doesn't require valid credentials
Date Mon, 15 Jan 2007 15:54:27 GMT

     [ https://issues.apache.org/jira/browse/GERONIMO-2435?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Paul McMahan updated GERONIMO-2435:
-----------------------------------

    Component/s:     (was: Tomcat)

I was unable to recreate this problem using the tomcat-j2ee-1.2-beta assembly.  When I supplied
invalid credentials the shutdown failed as I expected, see below.  From what I understand
there is a way for geronimo to cache your credentials, perhaps that was in effect when you
invoked the shutdown command? 

frylock:~/geronimo-tomcat-j2ee-1.2-beta/bin pmcmahan$ ./shutdown.sh 
Using GERONIMO_BASE:   /Users/pmcmahan/geronimo-tomcat-j2ee-1.2-beta
Using GERONIMO_HOME:   /Users/pmcmahan/geronimo-tomcat-j2ee-1.2-beta
Using GERONIMO_TMPDIR: /Users/pmcmahan/geronimo-tomcat-j2ee-1.2-beta/var/temp
Using JRE_HOME:        /System/Library/Frameworks/JavaVM.framework/Versions/1.5.0/Home
Username: asdfasdfads
Password: ************
Locating server on port 1099... java.lang.SecurityException: Invalid login
        at org.apache.geronimo.jmxremoting.Authenticator.authenticate(Authenticator.java:70)
        at javax.management.remote.rmi.RMIServerImpl.doNewClient(RMIServerImpl.java:221)
        at javax.management.remote.rmi.RMIServerImpl.newClient(RMIServerImpl.java:188)
        at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
        at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
        at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
        at java.lang.reflect.Method.invoke(Method.java:585)
        at sun.rmi.server.UnicastServerRef.dispatch(UnicastServerRef.java:294)
        at sun.rmi.transport.Transport$1.run(Transport.java:153)
        at java.security.AccessController.doPrivileged(Native Method)
        at sun.rmi.transport.Transport.serviceCall(Transport.java:149)
        at sun.rmi.transport.tcp.TCPTransport.handleMessages(TCPTransport.java:460)
        at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run(TCPTransport.java:701)
        at java.lang.Thread.run(Thread.java:613)
        at sun.rmi.transport.StreamRemoteCall.exceptionReceivedFromServer(StreamRemoteCall.java:247)
        at sun.rmi.transport.StreamRemoteCall.executeCall(StreamRemoteCall.java:223)
        at sun.rmi.server.UnicastRef.invoke(UnicastRef.java:126)
        at javax.management.remote.rmi.RMIServerImpl_Stub.newClient(Unknown Source)
        at javax.management.remote.rmi.RMIConnector.getConnection(RMIConnector.java:2229)
        at javax.management.remote.rmi.RMIConnector.connect(RMIConnector.java:271)
        at javax.management.remote.JMXConnectorFactory.connect(JMXConnectorFactory.java:248)
        at org.apache.geronimo.deployment.cli.StopServer.getRunningKernel(StopServer.java:143)
        at org.apache.geronimo.deployment.cli.StopServer.execute(StopServer.java:99)
        at org.apache.geronimo.deployment.cli.StopServer.main(StopServer.java:52)

Also, this problem doesn't seem to be related to tomcat so I removed that from the responsible
components..

> Shutdown doesn't require valid credentials
> ------------------------------------------
>
>                 Key: GERONIMO-2435
>                 URL: https://issues.apache.org/jira/browse/GERONIMO-2435
>             Project: Geronimo
>          Issue Type: Bug
>      Security Level: public(Regular issues) 
>          Components: security, startup/shutdown
>    Affects Versions: 1.2
>         Environment: jlaskowski@dev /cygdrive/c/oss/geronimo
> $ svn info
> Path: .
> URL: https://svn.apache.org/repos/asf/geronimo/server/trunk
> Repository Root: https://svn.apache.org/repos/asf
> Repository UUID: 13f79535-47bb-0310-9956-ffa450edef68
> Revision: 449803
> Node Kind: directory
> Schedule: normal
> Last Changed Author: djencks
> Last Changed Rev: 449797
> Last Changed Date: 2006-09-25 22:05:13 +0200 (Mon, 25 Sep 2006)
> Properties Last Updated: 2006-09-13 16:27:07 +0200 (Wed, 13 Sep 2006)
>            Reporter: Jacek Laskowski
>
> 1/ Run geronimo-tomcat-j2ee with ./bin/startup.sh
> 2/ Run ./bin/shutdown.sh. When asked about Username and password enter whatever comes
to your mind, say x/x
> 3/ Notice that although the credenatials are wrong, the server shutdown procedure begins
(@see var/log/geronimo.out)
> Server shutdown begun
> ...
> Server shutdown completed

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message