• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Ron McLeod
  • Paul Clapham
  • Tim Cooke
  • Devaka Cooray
Sheriffs:
  • Liutauras Vilda
  • paul wheaton
  • Rob Spoor
Saloon Keepers:
  • Tim Moores
  • Stephan van Hulst
  • Tim Holloway
  • Piet Souris
  • Mikalai Zaikin
Bartenders:
  • Carey Brown
  • Roland Mueller

was.policy file location in WSAD/WebSphere

 
Greenhorn
Posts: 4
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
I have a security problem with the WebSphere test invironment of WSAD. We are trying to get our permissions from an external source through JAAS. We have extended javax.security.auth.Policy, where we connect to our Authentication and Authorization Service to retrieve the permissions for a Subject. This works quite well.
However the Websphere testserver in WSAD is set default to get java.security.AllPermissions. This is done in the file server.policy. So it doesn't matter if the subject has any permissions at all, the default setting in server.policy gives it AllPermissions.
We removed the grant for AllPermission from the server.policy and created a was.policy with the necessary permissions and put it in cells/<cellname>/applications/<earfilename>/deployments/<applicationname>/META-INF/ (like is was explained in the help). But it doesn't matter where I put the was.policy file, it seems that the server can't find it or doesn't read it.
Is anybody familiar with the was.policy files in the WSAD testenvironment and where to put them?
 
Ranch Hand
Posts: 32
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
It should be under .ear/META-INF/was.policy
 
Their achilles heel is the noogie! Give them noogies tiny ad!
We need your help - Coderanch server fundraiser
https://coderanch.com/wiki/782867/Coderanch-server-fundraiser
reply
    Bookmark Topic Watch Topic
  • New Topic