sonia liu wrote:
> Hi Anissa,
>
> We have a form authentication test case passed for TP2 with a
> workaround -- restart domain before accessing protected resources.
> Otherwise you will always get 403 error. I reported an issue for this #4554
Anissa,
> 1. Install V3 build, start domain
> 2. Checkout SQE workspace
> cvs co appserver-sqe/boostrap.xml
> cd appserver-sqe
> ant -f bootstrap.xml co-security
> 3.set env variables
> AS_HOME <as install dir>
> SPS_HOME <appserver-sqe>
> ANT_HOME
> JAVA_HOME
> 4. cd appserver-sqe/pe/security/webserver/ dir, run command
> ant setup
> 5. cd appserver-sqe/pe/seucrity/webserver/form dir, run command
> ant build deploy runweb
> I always got 403 access denied error.
> I manually tried it using browser, I got the same error.
do any of steps 1-3; have the effect of changing the location or
configuration of the domain that you are trying to deploy into?
I suspect the appserver is still running with the config, prior to your
change. this gets resolved when you restart it.
do you see a message in the server.log that identifies the "domain that
failed? If so, the domain will list the permissions granted to the app.
and the permission check that failed, because it was not granted to the
doamin. This message should help us understand whether the permissions
that are granted are compatible with the domain config.
maybe the test setup has somehow changed or replaced or moved the
server.policy file or the app specific policy file for the adminapp.
Ron
> Thanks
> Sonia
> Anissa Lam wrote:
>
>> Hi Kumar,
>>
>> Is FORM authentication working in TP2 ?
>> I need to turn on authentication in Admin Console, I am very sure the
>> user name and password is 'admin' and 'adminadmin'.
>> If i enter a wrong user name or password, i see the correct INFO
>> logged:
>>
>> Apr 6, 2008 1:01:17 PM
>> com.sun.enterprise.security.auth.login.LoginContextDriver doPasswordLogin
>> INFO: java_security.audit_auth_refused
>>
>> but if i enter the correct user name and password, it tries to go the
>> welcome page, and then shows 403 error.
>>
>> HTTP Status 403 - Access to the requested resource has been denied.
>>
>> *type* Status report
>> *message*Access to the requested resource has been denied
>> *description*Access to the specified resource (Access to the requested
>> resource has been denied) has been forbidden.
>>
>> Is this a known issue in V3 TP2 ?
>>
>> thanks
>> Anissa
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: dev-unsubscribe_at_glassfish.dev.java.net For
>> additional commands, e-mail: dev-help_at_glassfish.dev.java.net
>
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: dev-unsubscribe_at_glassfish.dev.java.net
> For additional commands, e-mail: dev-help_at_glassfish.dev.java.net
>