Return-Path: 
 <user-return-7745-apmail-geronimo-user-archive=geronimo.apache.org@geronimo.apache.org>
Delivered-To: apmail-geronimo-user-archive@www.apache.org
Received: (qmail 18156 invoked from network); 26 Sep 2007 02:43:45 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2)
  by minotaur.apache.org with SMTP; 26 Sep 2007 02:43:45 -0000
Received: (qmail 17020 invoked by uid 500); 26 Sep 2007 02:43:33 -0000
Delivered-To: apmail-geronimo-user-archive@geronimo.apache.org
Received: (qmail 17000 invoked by uid 500); 26 Sep 2007 02:43:33 -0000
Mailing-List: contact user-help@geronimo.apache.org; run by ezmlm
Precedence: bulk
list-help: <mailto:user-help@geronimo.apache.org>
list-unsubscribe: <mailto:user-unsubscribe@geronimo.apache.org>
List-Post: <mailto:user@geronimo.apache.org>
Reply-To: user@geronimo.apache.org
List-Id: <user.geronimo.apache.org>
Delivered-To: mailing list user@geronimo.apache.org
Received: (qmail 16989 invoked by uid 99); 26 Sep 2007 02:43:33 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 25 Sep 2007 19:43:33 -0700
X-ASF-Spam-Status: No, hits=-0.0 required=10.0
	tests=SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: domain of tim.mcconne@gmail.com
 designates 64.233.166.181 as permitted sender)
Received: from [64.233.166.181] (HELO py-out-1112.google.com) (64.233.166.181)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 26 Sep 2007 02:43:30 +0000
Received: by py-out-1112.google.com with SMTP id u52so5049728pyb
        for <user@geronimo.apache.org>; Tue, 25 Sep 2007 19:43:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=beta;
        h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:content-type:content-transfer-encoding;
        bh=i6QtSEwb1A2grxpQ0oKn6BTJwXGkw/6GZTMf7EMXc3Q=;
        b=ekE4pNunpcmePlRe07J0D1ZR2RMQAT/3VgswR7hksVBaqutgqI3+/dQvOlyGzGKi6GKfsAQLrGbCPTqY8rfrDQP0YalKQsAQ4MOd52weE/Z2GP447Z8vs5vOBWTRQz1/fjejKBSOxwJ++500KATvyJQrV1e/2nrzruFU0+Q8BA8=
DomainKey-Signature: a=rsa-sha1; c=nofws;
        d=gmail.com; s=beta;
        h=received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:content-type:content-transfer-encoding;
        b=OTePO5CKvZhZoxT9s+EzmDzuPwBIHep+MH/n9lCubDwlWyHUU2ZiFXBFrR6WoynoKbRM1dTbPm56hhyEfkLdo/gOd2nV3NNH7oIgFeff2GPnfdxUoSgnuSVx9OkOHz2o77ZsUVNAWfo9D3UsiKVnKBv8p/QbwQRc5lZtgLsE3n0=
Received: by 10.35.39.2 with SMTP id r2mr204118pyj.1190774589523;
        Tue, 25 Sep 2007 19:43:09 -0700 (PDT)
Received: from ?9.51.89.61? ( [129.33.49.251])
        by mx.google.com with ESMTPS id s40sm122760hsb.2007.09.25.19.43.07
        (version=TLSv1/SSLv3 cipher=RC4-MD5);
        Tue, 25 Sep 2007 19:43:07 -0700 (PDT)
Message-ID: <46F9C733.7060702@gmail.com>
Date: Tue, 25 Sep 2007 22:42:59 -0400
From: Tim McConnell <tim.mcconne@gmail.com>
User-Agent: Thunderbird 2.0.0.6 (Windows/20070728)
MIME-Version: 1.0
To: user@geronimo.apache.org
Subject: Re: EJB Authentication Problem
References: <EE1B77B475D35D4F84C17755CF54760E44C4BC@ACL-EXCHANGE.ACL.COM>
In-Reply-To: <EE1B77B475D35D4F84C17755CF54760E44C4BC@ACL-EXCHANGE.ACL.COM>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Virus-Checked: Checked by ClamAV on apache.org

Hi Kory, it took me a while to find the Eclipse plugin error messages you 
noticed. Are these below similar to the messages you're getting in your 
workspaces\.metadata\.log file ??

!ENTRY org.eclipse.emf.ecore 2 0 2007-09-21 17:37:42.265
!MESSAGE Both 'org.apache.geronimo.deployment.model' and 
'org.apache.geronimo.v11.deployment.model' register an extension parser for 
'deployment'

!ENTRY org.eclipse.emf.ecore 2 0 2007-09-21 17:37:42.281
!MESSAGE Both 'org.apache.geronimo.deployment.model' and 
'org.apache.geronimo.v11.deployment.model' register an extension parser for 'naming'

!ENTRY org.eclipse.emf.ecore 2 0 2007-09-21 17:37:42.281
!MESSAGE Both 'org.apache.geronimo.deployment.model' and 
'org.apache.geronimo.v11.deployment.model' register an extension parser for 'web'

If so, they are benign although somewhat confusing. Unfortunately, and as you've 
noticed, you cannot disable the features you don't need/want since all the 
features are tightly coupled. However, we hope to improve that in subsequent 
releases. Still, I shall open a JIRA to eliminate those warning messages. Thanks 
much for the feedback.


Kory Markevich wrote:
> I've been doing some research into using Geronimo 2.0.1 to host some
> EJB3 session beans, interacting with a stand-alone client.  I can
> connect to the server and call methods fine, but I've encountered some
> difficulties with security.  Specifically I've tried using
> Context.SECURITY_PRINCIPAL and Context.SECURITY_CREDENTIALS when
> creating the InitialContext, but this seems to be broken.  After some
> tracing it seems that
> org.apache.geronimo.openejb.GeronimoSecurityService.login( ) tries to
> create a LoginContext with a null security realm, which throws an
> exception and prevents authentication.  I noticed that the latest
> version of OpenEJB has added the key openejb.authentication.realmName,
> but this is not available in 2.0.1 (and it seems a bit backward having
> to have the client specify the security realm.)
> 
> I have been able to use
> org.apache.openejb.client.ClientSecurity.directAuthentication( ) to
> successfully authenticate, but it seems a bit hacky and is very OpenEJB
> specific (and also requires the client to provide the realm name.)
> 
> Is there something I'm missing or doing wrong?  I'm fairly new to EE
> stuff so hopefully it's just some newbie mistake.
> 
> BTW, a couple other things I noticed:
> 
> - EJB security is disabled if the geronimo-application.xml doesn't at
> least have an empty <security/> entry.  This means any security
> annotations are completely ignored, which surprised me.
> - EJB3 EAR's will not deploy using the Eclipse plugin unless they
> contain an application.xml file.  Renaming the ZIP file to an EAR and
> manually deploying works fine.
> - When creating new EJB3 projects in Eclipse, all geronimo-*.xml files
> reference the old schemas.  If the schemas are changed to the 2.0.1
> versions, then the editors fail (I'm assuming this is due to the EMF
> JIRA entry?)
> - When starting Eclipse, there are 3 warnings in the log compaining
> about 'org.apache.geronimo.deployment.model' and
> 'org.apache.geronimo.v11.deployment.model'.  I tried to disable the 1.0
> and 1.1 features to get rid of the warnings (since I didn't need those
> versions,) but then Geronimo 2.0 wouldn't be listed as an option when
> creating new projects.  The feature wasn't flagged as being broken
> however.
>  
> ________________________________
> 
> 
> Kory Markevich
> Tech Lead
> ACL Services Ltd. 
> 
> 1550 Alberni Street | Vancouver | BC | V6G 1A5
> Tel: 604 669 4225
> Email: kory_markevich@acl.com  | Web: www.acl.com  
> 
> ________________________________
> 
> The contents of this email are confidential and are for the intended
> recipient(s) named above only. If you are not the intended recipient,
> any copying, distribution or use of this email is prohibited. If you
> have received this email in error, please notify the sender and delete
> the email.
> 
> 

-- 
Thanks,
Tim McConnell