Ich habe zwei WebSphere-Server. Der erste (v.8.5.5) hostet mein EJB Bean lokal (RunsAS 'Admin' Rolle, die 'domain_user' zugeordnet ist) Die zweite (v.7) hostet FileNet ContentEngine 5.1. Ist es in Ordnung, wenn ich meine Ejb-Bean in der 2. Websphere bereitstellen und eine Verbindung mit iiop: // localhost: 2809/FileNet/Engine herstellen.Remote-IIOP-Verbindung zu Filenet Content Engine
Aber es wird immer Fehler, wenn ich von 1nd Remote-Verbindung WS iiop: // zweiter war: 2809/FileNet/Motor
Ich habe gesetzt theese configs:
System.setProperty (“ java.security.auth.login.config ", " c: \ eq \ config \ jaas.conf.WebSphere "); System.setProperty ("com.ibm.CORBA.ConfigURL", "Datei: c: \ ea \ config \ sas.client.props");
... dann tun PushSubject
[4/9/16 21:50:04:038 YEKT] 0000022f BusinessExcep E CNTR0020E: EJB threw an unexpected (non-declared) exception during invocation of method "getDocumentContent" on bean "BeanId(web-services-bni#ejb-1.0.1-SNAPSHOT.jar#CeServiceImpl, null)". Exception data: com.filenet.api.exception.EngineRuntimeException: FNRCS0001E: SECURITY_ANONYMOUS_DISALLOWED: Access to Content Engine was not allowed because the request was made anonymously instead of by an authenticated user. The application server reported that the user was anonymous. errorStack={
at com.filenet.engine.context.SecurityContext.<init>(SecurityContext.java:75)
at com.filenet.engine.context.ServerCallContext.<init>(ServerCallContext.java:107)
at com.filenet.engine.context.ServerCallContext.newInstance(ServerCallContext.java:1115)
at com.filenet.engine.jca.impl.RequestBrokerImpl.executeSearch(RequestBrokerImpl.java:814)
at com.filenet.engine.ejb.EngineCoreBean._executeSearch(EngineCoreBean.java:318)
meine EJB Code:
@DeclareRoles({"Everyone", "Admin"})
@RolesAllowed({"Everyone", "Admin"})
@RunAs("Admin")
@Stateless
public class CeServiceImpl implements CeServiceLocal {
private static final Logger logger = Logger.getLogger(CeServiceImpl.class.getName());
private CeServiceHelper serviceHelper;
private Subject subject;
@PostConstruct
public void init() {
logger.info("CeServiceImpl init started");
String ceUri = ConfigHelper.getCeUri();
if (ceUri == null) {
logger.log(Level.SEVERE, "ceUri can not be null");
throw new NullPointerException("ceUri can not be null");
}
logger.info("ceUri: " + ceUri);
System.setProperty("java.security.auth.login.config", "c:\\ea\\config\\jaas.conf.WebSphere");
System.setProperty("com.ibm.CORBA.ConfigURL", "file:c:\\ea\\config\\sas.client.props");
Connection connection = Factory.Connection.getConnection(ceUri);
subject = UserContext.createSubject(connection, "os_user", "password", "FileNetP8");
try {
UserContext.get().pushSubject(subject);
} catch (Exception e) {
logger.warning(e.getMessage());
}
serviceHelper = new CeServiceHelper(connection);
}
By the way, mein Endziel ist transparent Remote-Verbindung erstellen (ohne pushSubject, popSubject ..)