野飞:服务器重启后授权失败

huangapple
go评论111阅读模式
英文:

Wildfly: authorization fails after server restart

问题

  1. 我首先进行所需的设置(如下所述)。一切工作正常,但当我重新启动 `standalone.sh` 并执行一个SOAP请求时,我只收到以下响应:
  3.     <html>
  4.        <head>
  5.           <title>错误</title>
  6.        </head>
  7.        <body>未经授权</body>
  8.     </html>
  10. 在带有 `standalone.sh` 的终端中,我收到以下消息:
  12.     ERROR [org.jboss.security](default task-1PBOX00261:无法加载用户/密码/角色文件:java.io.IOExceptionPBOX00072:找不到属性文件 users.properties/defaultUsers.properties
  14. 我应该怎么做才能使授权工作?
  16. # 设置 #
  17. 这是我为设置一切所做的:
  18. 1. 我运行 `mvn archetype:generate` 并从 `org.wildfly.archetype:wildfly-javaee7-webapp-ear-blank-archetype` 原型创建项目
  20. groupIdpl.edu.agh.soa
  22. artifactIdlab
  24. 2. 我在 `lab/lab-ejb/src/main/java/pl/edu/agh/soa` 中创建一个名为 `Hello.java` 的类:
  26. ```java
  27. @Stateless
  28. @WebService
  29. @SecurityDomain("domain1")
  30. @DeclareRoles({"developer"})
  31. @WebContext(
  32.    authMethod="BASIC",
  33.    transportGuarantee="NONE")
  34. public class Hello {
  36.     private List<String> subjects = new ArrayList<>();
  37.     private String name;
  38.     private String surname;
  40.     @WebMethod
  41.     @RolesAllowed("developer")
  42.     @XmlElementWrapper(name="subjects")
  43.     @XmlElement(name="subject")
  44.     public List<String>
  45.     listSubjects(@WebParam(name="filter") String filter) {
  46.         List<String> filtered = new ArrayList<>();
  47.         for(String elem : this.subjects) {
  48.             if(elem.contains(filter)) {
  49.                 filtered.add(elem);
  50.             }
  51.         }
  52.         return filtered;
  53.     }
  55.     @WebMethod
  56.     @RolesAllowed("developer")
  57.     @WebResult
  58.     public String
  59.     addSubject(@WebParam(name="subj") String subj) {
  60.         this.subjects.add(subj);
  61.         return "After add: " + this.subjects.toString();
  62.     }
  64.     @WebMethod
  65.     @RolesAllowed("developer")
  66.     @WebResult
  67.     public String
  68.     editName(String name) {
  69.         String before = this.name;
  70.         this.name = name;
  71.         
  72.         return "Before: " + before;
  73.     }
  75.     @WebMethod
  76.     @RolesAllowed("developer")
  77.     @WebResult
  78.     public String
  79.     editSurname(String surname) {
  80.         String before = this.surname;
  81.         this.surname = surname;
  82.         
  83.         return "Before: " + before;
  84.     }
  85. }
  1. 我使用 add-user.sh 添加了 user3
  2. 使用 jboss-cli.sh 创建一个新的安全域,我在其中粘贴了以下内容:

/subsystem=security/security-domain=domain1/:add(cache-type=default)

/subsystem=security/security-domain=domain1/authentication=classic:add(login-modules=[{"code"=>"UsersRoles","flag"=>"required","module-options"=>[("usersProperties"=>"users.properties"),("rolesProperties"=>"roles.properties")]}])

  1. 我在 lab/lab-ejb/src 中创建了 users.propertiesroles.properties 文件
  2. <details>
  3. <summary>英文:</summary>
  5. I first do the setup needed (described below). Everything works, but when I restart `standalone.sh` and do a SOAP request I only get this response:
  7.     &lt;html&gt;
  8.        &lt;head&gt;
  9.           &lt;title&gt;Error&lt;/title&gt;
  10.        &lt;/head&gt;
  11.        &lt;body&gt;Unauthorized&lt;/body&gt;
  12.     &lt;/html&gt;
  14. And in the terminal with `standalone.sh` I get:
  16.     ERROR [org.jboss.security] (default task-1) PBOX00261: Failed to load users/passwords/roles files: java.io.IOException: PBOX00072: Properties file users.properties/defaultUsers.properties not found
  18. What should I do to make the authorization work?
  20. # Setup #
  21. This is what I do to setup everything:
  22. 1. I run `mvn archetype:generate` and create the project from `org.wildfly.archetype:wildfly-javaee7-webapp-ear-blank-archetype` archetype
  24. groupId: pl.edu.agh.soa
  26. artifactId: lab
  28. 2. I create a class `Hello.java` in `lab/lab-ejb/src/main/java/pl/edu/agh/soa`:

@Stateless
@WebService
@SecurityDomain("domain1")
@DeclareRoles({"developer"})
@WebContext(
authMethod="BASIC",
transportGuarantee="NONE")
public class Hello {

  1. private List&lt;String&gt; subjects = new ArrayList&lt;&gt;();
  2. private String name;
  3. private String surname;
  5. @WebMethod
  6. @RolesAllowed(&quot;developer&quot;)
  7. @XmlElementWrapper(name=&quot;subjects&quot;)
  8. @XmlElement(name=&quot;subject&quot;)
  9. public List&lt;String&gt;
  10. listSubjects(@WebParam(name=&quot;filter&quot;) String filter) {
  11.     List&lt;String&gt; filtered = new ArrayList&lt;&gt;();
  12.     for(String elem : this.subjects) {
  13.         if(elem.contains(filter)) {
  14.             filtered.add(elem);
  15.         }
  16.     }
  17.     return filtered;
  18. }
  20. @WebMethod
  21. @RolesAllowed(&quot;developer&quot;)
  22. @WebResult
  23. public String
  24. addSubject(@WebParam(name=&quot;subj&quot;) String subj) {
  25.     this.subjects.add(subj);
  26.     return &quot;After add: &quot; + this.subjects.toString();
  27. }
  29. @WebMethod
  30. @RolesAllowed(&quot;developer&quot;)
  31. @WebResult
  32. public String
  33. editName(String name) {
  34.     String before = this.name;
  35.     this.name = name;
  36.     
  37.     return &quot;Before: &quot; + before;
  38. }
  40. @WebMethod
  41. @RolesAllowed(&quot;developer&quot;)
  42. @WebResult
  43. public String
  44. editSurname(String surname) {
  45.     String before = this.surname;
  46.     this.surname = surname;
  47.     
  48.     return &quot;Before: &quot; + before;
  49. }

}

  2. 3. I add `user3` with add-user.sh
  3. 4. Create a new security domain with `jboss-cli.sh`, there I paste:
  5. `/subsystem=security/security-domain=domain1/:add(cache-type=default)`
  7. `/subsystem=security/security-domain=domain1/authentication=classic:add(login-modules=[{&quot;code&quot;=&gt;&quot;UsersRoles&quot;,&quot;flag&quot;=&gt;&quot;required&quot;,&quot;module-options&quot;=&gt;[(&quot;usersProperties&quot;=&gt;&quot;users.properties&quot;),(&quot;rolesProperties&quot;=&gt;&quot;roles.properties&quot;)]}])`
  9. 5. I create `users.properties` and `roles.properties` files in `lab/lab-ejb/src`
  11. </details>
  14. # 答案1
  15. **得分**: 0
  17. 你可以尝试将 `roles.properties`  `users.properties` 放在另一个目录中,例如:`\wildfly-20.0.1.Final\standalone\configuration` 或者 `src/main/resources`
  19. [查阅安全文档][1]
  21.   [1]: https://docs.wildfly.org/20/Admin_Guide.html#Security_Realms
  23. <details>
  24. <summary>英文:</summary>
  26. You can try to put the `roles.properties` and `users.properties` in another directory e.g. : `\wildfly-20.0.1.Final\standalone\configuration` or `src/main/resources`
  29. [check the security documentation][1] 
  32.   [1]: https://docs.wildfly.org/20/Admin_Guide.html#Security_Realms
  34. </details>

huangapple
  • 本文由 发表于 2020年8月18日 16:07:04
  • 转载请务必保留本文链接:https://go.coder-hub.com/63464372.html
  • java
  • maven
  • soap
  • wildfly
匿名

发表评论

匿名网友

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen:

确定