geronimo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "David Jencks (JIRA)" <>
Subject [jira] Commented: (GERONIMO-3965) Custom LoginModule uses wrong classloader
Date Wed, 21 May 2008 19:37:55 GMT


David Jencks commented on GERONIMO-3965:

1. build one of the geronimo versions from svn or find a snapshot from one of the auto-builds
2. make sure the login module class is available in the plugin/module where the security realm
using it is defined
3. enjoy :-)

You shouldn't have to do anything special for this to work.  The trunk testsuite/enterprise-testsuite/sec-tests
client test relies on this working for the ejb module's fake login module when calling in
through the ejbd protocol.

> Custom LoginModule uses wrong classloader
> -----------------------------------------
>                 Key: GERONIMO-3965
>                 URL:
>             Project: Geronimo
>          Issue Type: Bug
>      Security Level: public(Regular issues) 
>          Components: security
>    Affects Versions: 2.0.2, 2.1
>         Environment: Windows XP, JDK 1.5
>            Reporter: Kory Markevich
>            Assignee: David Jencks
>             Fix For: 2.0.x, 2.1.x, 2.2
> When specifying a custom LoginModule implementation in a geronimo-application.xml file,
the class cannot be loaded if it is in the EAR.  Debugging, the classloader being used belongs
to OpenEJB rather than the one for the application.  I have tried both versions 2.0.2 and
> This bug was discovered and discussed in the mailing lists (
but I couldn't find any JIRA's for it.  Note that the workaround discussed in the thread cannot
be used in our application, though I tried it anyway and couldn't get it working.

This message is automatically generated by JIRA.
You can reply to this email to add a comment to the issue online.

View raw message