0 Replies Latest reply on Jan 11, 2007 11:52 PM by 666705

    SecurityException

    666705
      java.lang.SecurityException: [Security:090398]Invalid Subject: james_bond
      at weblogic.security.service.SecurityServiceManager.seal(SecurityServiceManager.java:697)
      at weblogic.security.service.RoleManager.getRoles(RoleManager.java:279)
      at com.bea.p13n.entitlements.Authorization.getRoles(Authorization.java:209)
      at com.bea.p13n.entitlements.Authorization.isAccessAllowed(Authorization.java:786)
      at com.bea.p13n.entitlements.Authorization.isAccessAllowed(Authorization.java:270)
      at com.bea.netuix.servlets.controls.application.Desktop.isCapable(Desktop.java:240)
      at com.bea.netuix.servlets.controls.application.Desktop.preRender(Desktop.java:160)
      at com.bea.netuix.nf.ControlLifecycle$7.visit(ControlLifecycle.java:443)
      at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:718)
      at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:730)
      at com.bea.netuix.nf.ControlTreeWalker.walk(ControlTreeWalker.java:181)
      at com.bea.netuix.nf.Lifecycle.runOutbound(Lifecycle.java:204)
      at com.bea.netuix.nf.Lifecycle.run(Lifecycle.java:153)
      at com.bea.netuix.servlets.manager.UIServlet.runLifecycle(UIServlet.java:333)
      at com.bea.netuix.servlets.manager.UIServlet.processControlTree(UIServlet.java:220)
      at com.bea.netuix.servlets.manager.PortalServlet.doPost(PortalServlet.java:820)
      at com.bea.netuix.servlets.manager.PortalServlet.doGet(PortalServlet.java:671)
      at com.bea.netuix.servlets.manager.UIServlet.service(UIServlet.java:147)
      at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
      at weblogic.servlet.internal.ServletStubImpl$ServletInvocationAction.run(ServletStubImpl.java:1072)
      at weblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java:465)
      at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:28)
      at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:27)
      at com.pge.csis.bt.BTEnrolmentFilter.doFilter(BTEnrolmentFilter.java:63)
      at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:27)
      at com.pge.csis.bt.Loggingfilter.doFilter(Loggingfilter.java:37)
      at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:27)
      at com.bea.p13n.servlets.PortalServletFilter.doFilter(PortalServletFilter.java:293)
      at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:27)
      at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:6987)
      at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
      at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
      at weblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletContext.java:3892)
      at weblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java:2766)
      at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:224)
      at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:183)

      I get the above error while evaluating the portal entitlements. I have a Custom Role mapper that adds a WLSGroupImpl to the Subject. Here is a piece of code that does that.

      WLSGroupImpl custGrp = new WLSGroupImpl(customerRole.getName());
      debug("Customer Role");
      role = customerRole;
      validator.sign(custGrp);

      Please let me know what am I doing wrong.
      subject.getPrincipals().add(custGrp);