You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@geronimo.apache.org by rbaumhof <ra...@web.de> on 2010/02/02 08:49:34 UTC

Re: Can not login to geronimo 2.2 console

Now it's clear that the RMI security settings force the error (see
https://issues.apache.org/jira/browse/GERONIMO-4981).

The start up option which forces the error is:
set JAVA_OPTS=-Xms96m -Xmx256m -XX:MaxPermSize=128M
-DGERONIMO_CONF=/d:/home/geronimo2.2/var/config
-Djava.security.manager="java.rmi.RMISecurityManager"
-Djava.security.policy=/geronimo2.2/bin/java.policy

The policy files content was create with policy toolkit and is:
grant {
  permission java.security.AllPermission;
};

With jdk1.6 update 14 we get the following error message:
java.lang.SecurityException: Es wird versucht, ein Objekt hinzuzufügen, das
keine Instanz von java.security.Principal für eine Principal-Gruppe eines
Betreffs ist.
	at javax.security.auth.Subject$SecureSet.add(Subject.java:1074)
	at java.util.Collections$SynchronizedCollection.add(Collections.java:1577)
	at
org.apache.catalina.connector.Request.setUserPrincipal(Request.java:1757)
	at
org.apache.geronimo.tomcat.security.SecurityValve.invoke(SecurityValve.java:77)
	at
org.apache.geronimo.tomcat.security.jacc.JACCSecurityValve.invoke(JACCSecurityValve.java:54)
	at
org.apache.geronimo.tomcat.GeronimoStandardContext$SystemMethodValve.invoke(GeronimoStandardContext.java:420)
	at
org.apache.geronimo.tomcat.valve.GeronimoBeforeAfterValve.invoke(GeronimoBeforeAfterValve.java:47)
	at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
	at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
	at
org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:567)
	at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
	at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:293)
	at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:849)
	at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583)
	at
org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:361)
	at org.apache.geronimo.pool.ThreadPool$1.run(ThreadPool.java:214)
	at
org.apache.geronimo.pool.ThreadPool$ContextClassLoaderRunnable.run(ThreadPool.java:344)
	at
java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
	at
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
	at java.lang.Thread.run(Thread.java:619)


-- 
View this message in context: http://old.nabble.com/Can-not-login-to-geronimo-2.2-console-tp27311450s134p27416535.html
Sent from the Apache Geronimo - Users mailing list archive at Nabble.com.