From user-return-913-apmail-geronimo-user-archive=geronimo.apache.org@geronimo.apache.org Sat Oct 08 06:34:07 2005 Return-Path: Delivered-To: apmail-geronimo-user-archive@www.apache.org Received: (qmail 19276 invoked from network); 8 Oct 2005 06:34:07 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 8 Oct 2005 06:34:07 -0000 Received: (qmail 24049 invoked by uid 500); 8 Oct 2005 06:34:06 -0000 Delivered-To: apmail-geronimo-user-archive@geronimo.apache.org Received: (qmail 24033 invoked by uid 500); 8 Oct 2005 06:34:05 -0000 Mailing-List: contact user-help@geronimo.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: user@geronimo.apache.org List-Id: Delivered-To: mailing list user@geronimo.apache.org Received: (qmail 24019 invoked by uid 99); 8 Oct 2005 06:34:05 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 07 Oct 2005 23:34:05 -0700 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests=RCVD_BY_IP,SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (asf.osuosl.org: domain of www.bkk@gmail.com designates 64.233.162.193 as permitted sender) Received: from [64.233.162.193] (HELO zproxy.gmail.com) (64.233.162.193) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 07 Oct 2005 23:34:09 -0700 Received: by zproxy.gmail.com with SMTP id 9so498126nzo for ; Fri, 07 Oct 2005 23:33:44 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=hTWkyImdpa/dwCUk51EwSpqsLKrKXS1DTa65l5p5dL3YVBOX0ta0++kQF5mRpNUMBI2Kw5HmVnGIwjC42OK9OeJJK57NTysCrbkTXpviBt8HF79dYFymQzJ+uCFZKgP5NwOwKNdIqhFGOpsG0JiVoPobp3eLMEHB9qUIpSEKNSQ= Received: by 10.36.194.10 with SMTP id r10mr489134nzf; Fri, 07 Oct 2005 23:33:44 -0700 (PDT) Received: by 10.36.135.9 with HTTP; Fri, 7 Oct 2005 23:33:44 -0700 (PDT) Message-ID: <2ed2f49c0510072333l384f9796i62e6de7f8af3d64e@mail.gmail.com> Date: Sat, 8 Oct 2005 12:03:44 +0530 From: Krishnakumar B Reply-To: Krishnakumar B To: user@geronimo.apache.org Subject: Login Module works for Jetty but not for Tomcat. In-Reply-To: <2ed2f49c0510072039k63d59badt8028b73b85e86728@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline References: <2ed2f49c0510072039k63d59badt8028b73b85e86728@mail.gmail.com> X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N hi, I am using a Login module configured for LDAP in my web app. THis works for Jetty but the same plans and web app i have deployed for Geronimo/Tomcat and it doesnt work. Plans Realm Plan : org.apache.geronimo.security.realm.providers.LDAP= LoginModule true initialContextFactory=3Dcom.sun.jndi.ldap.LdapCtxFactory connectionURL=3Dldap://localhost:389 connectionUsername=3Dcn=3Droot connectionPassword=3Ddb2admin connectionProtocol=3D authentication=3Dsimple userBase=3Dou=3Dpeople,dc=3Dibm,dc=3Dcom userSearchMatching=3Duid=3D{0} userSearchSubtree=3Dfalse roleBase=3Dou=3Dgroups,dc=3Dibm,dc=3Dcom roleName=3Dcn roleSearchMatching=3D(uniqueMember=3D{0}) roleSearchSubtree=3Dfalse userRoleName=3D ldap-realm ldap-realm ldap-login org/apache/geronimo/System ServerInfo org/apache/geronimo/ServerJaasLoginService REQUIRED ldap-login Geronimo-Web plan /ldap-demo false ldap-realm For Tomcat i get the following error. 09:13:23,502 DEBUG [FormAuthenticator] Authenticating username 'system' 09:13:23,502 DEBUG [TomcatGeronimoRealm] JAASRealm login requested for username "system" using LoginContext for application "ldap-realm" 09:13:23,512 ERROR [TomcatGeronimoRealm] Unexpected error javax.security.auth.login.LoginException: No LoginModules configured for ldap-realm at javax.security.auth.login.LoginContext.init(LoginContext.java:211= ) at javax.security.auth.login.LoginContext.(LoginContext.java:4= 26) at org.apache.geronimo.tomcat.realm.TomcatGeronimoRealm.authenticate= (TomcatGeronimoRealm.java:356) at org.apache.geronimo.tomcat.realm.TomcatGeronimoRealm.authenticate= (TomcatGeronimoRealm.java:324) at org.apache.catalina.authenticator.FormAuthenticator.authenticate(= FormAuthenticator.java:256) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(Authen= ticatorBase.java:391) at org.apache.geronimo.tomcat.valve.DefaultSubjectValve.invoke(Defau= ltSubjectValve.java:46) at org.apache.geronimo.tomcat.valve.PolicyContextValve.invoke(Policy= ContextValve.java:50) at org.apache.geronimo.tomcat.valve.TransactionContextValve.invoke(T= ransactionContextValve.java:53) at org.apache.geronimo.tomcat.valve.ComponentContextValve.invoke(Com= ponentContextValve.java:47) at org.apache.geronimo.tomcat.valve.InstanceContextValve.invoke(Inst= anceContextValve.java:60) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostVal= ve.java:126) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportVal= ve.java:105) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngin= eValve.java:107) at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.j= ava:526) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter= .java:148) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.= java:856) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.p= rocessConnection(Http11Protocol.java:744) at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpE= ndpoint.java:527) at org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(Leade= rFollowerWorkerThread.java:80) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(Thr= eadPool.java:684) at java.lang.Thread.run(Thread.java:567) Should i change the plans for TomCat? Regards Krishnakumar B