Forum LAMS for Tech-Heads - General Forum: Nasty 403 bug in LAMS 1.0.2 fixed!

By: Ernie Ghiglione

[ Reply | Forward ]

Hi Everyone,

In the past couple of weeks, some of you being experiencing some 403 (Un-authorized access) errors messages when using LAMS (see attached pic).

This bug had to do with the JAAS configuration in the $JBOSS_HOME/server/default/conf/jboss-service.xml file.

In LAMS 1.0.2, this currently reads as:

  <mbean code="org.jboss.security.plugins.JaasSecurityManagerService"
     name="jboss.security:service=JaasSecurityManager">
    <attribute name="SecurityManagerClassName">
      org.jboss.security.plugins.JaasSecurityManager
    </attribute>
  <attribute name="DefaultCacheTimeout">0</attribute>
  <attribute name="DefaultCacheResolution">0</attribute>
  </mbean>


In order to quickly fix these 403 errors, all you have to do is to remove or comment out the DefatilCacheTimeout and DefatultCacheResolution attributes. So it should be like this:


  <mbean code="org.jboss.security.plugins.JaasSecurityManagerService"
     name="jboss.security:service=JaasSecurityManager">
    <attribute name="SecurityManagerClassName">
      org.jboss.security.plugins.JaasSecurityManager
    </attribute>
  <!-- <attribute name="DefaultCacheTimeout">0</attribute> -->
  <!-- <attribute name="DefaultCacheResolution">0</attribute> -->
  </mbean>


Restart LAMS and that should fix your 403 bugs. Kudos to Jun-Dir, Fei and Dave for figuring out this fix.

We'll be releasing a new build shortly with these fixes and some other improvements. We'll recreate the Windows Installer and Upgraders for this new build as well.

Thanks,

Ernie

Posted by Ernie Ghiglione