Uploaded image for project: 'PicketBox '
  1. PicketBox
  2. SECURITY-808

Password not passed into DatabaseServerLoginModule

    XMLWordPrintable

Details

    • Bug
    • Resolution: Unresolved
    • Critical
    • None
    • None
    • None
    • None

    Description

      Trying to migrate an application to WildFly (from AS6.1) the migration went pretty smooth except for using the security domain.
      The application uses a the ClientLoginModule on the client side and the DatabaseserverLoginModule on the server side.

      Though the DatabaseServerLoginModule is called the validation of the password fails. I debugged it and the reason seems to be that in org.jboss.security.auth.callback.JBossCallbackHandler.getPassword() a org.jboss.as.security.remoting.RemotingConnectionCredential@22341334 is not handled and hence instead of a password the String org.jboss.as.security.remoting.RemotingConnectionCredential@22341334 is passed through to the DatabaseLoginModule.

      See also DatabaseServerLoginModule broken? and the related posts

      Attachments

        Activity

          People

            Unassigned Unassigned
            sae_stahlgruber Stefan Eder (Inactive)
            Votes:
            3 Vote for this issue
            Watchers:
            7 Start watching this issue

            Dates

              Created:
              Updated: