Uploaded image for project: 'Geronimo'
  1. Geronimo
  2. GERONIMO-3467

Confusing security exception thrown while authenticating using JMX with a just starting server

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Won't Fix
    • 2.0.1, 2.0.2, 2.1
    • 2.0.2, 2.1
    • security
    • Security Level: public (Regular issues)
    • None

    Description

      Scenario is as below:
      Let's say server is starting and org.apache.geronimo.configs/rmi-naming/2.0.1/car has started, but org.apache.geronimo.configs/j2ee-security/2.0.1/car hasn't yet started. If an external entity (like Geronimo Eclipse Plug-in) now tries to connect to the kernel remotely through JMX, although rmi connection succeeds, authenticate will fail (because security realm has not yet been started).

      In this case, org.apache.geronimo.jmxremoting.Authenticator.authenticate() is getting a LoginException with error
      "javax.security.auth.login.LoginException: No LoginModules configured for geronimo-admin". However this exception is not propogated, but rather is thrown back as a 'SecurityException("Invalid login")'.

      Attachments

        Issue Links

          is depended upon by

          Bug - A problem which impairs or prevents the functions of the product. GERONIMODEVTOOLS-193 Runs ping and throws java.lang.SecurityException during Geronimo server startup.

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              shivahr Shiva Kumar
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: