SecurityException: Invalid Subject
David Stacey
Sender: "David Stacey" <dst...@csc.com>
Reply-To: "David Stacey" <dst...@csc.com>
Subject: SecurityException: Invalid Subject
Newsgroups: weblogic.developer.interest.jms
X-User-Info: 198.89.160.22
NNTP-Posting-Host: 198.89.160.22
X-Original-NNTP-Posting-Host: 198.89.160.22
Message-ID: <3f44...@newsgroups.bea.com>
Date: 21 Aug 2003 08:28:17 -0700
X-Trace: newsgroups.bea.com 1061479697 198.89.160.22 (21 Aug 2003 08:28:17 -0700)
X-Original-Trace: 21 Aug 2003 08:28:17 -0700, 198.89.160.22
Organization: BEA NEWS SITE
Lines: 72
XPident: Unknown
Path: newsgroups.bea.com!not-for-mail
Xref: newsgroups.bea.com weblogic.developer.interest.jms:12790
We are trying to send a message to a JMS Queue in a WebLogic Server from an application
running on a different Server in another domain. When the send method executes
we get the following error:
weblogic.jms.common.JMSException: Error sending message
at weblogic.jms.client.JMSProducer._send(JMSProducer.java:348)
at weblogic.jms.client.JMSProducer.send(JMSProducer.java:172)
at com.cardinal.corp.logging.LoggingServiceInterfaceImpl.logEvent(LoggingServiceInterfaceImpl.java:132)
at com.cardinal.cpa.util.ClickStream.clickEventLog(Unknown Source)
at com.cardinal.cpa.presentation.action.DispatchAction.perform(Unknown
Source)
at org.apache.struts.action.ActionServlet.processActionPerform(ActionServlet.java:1787)
at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1586)
at org.apache.struts.action.ActionServlet.doGet(ActionServlet.java:492)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:740)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at weblogic.servlet.internal.ServletStubImpl$ServletInvocationAction.run(ServletStubImpl.java:1058)
at weblogic.security.service.SecurityServiceManager.runAs(SecurityServiceManager.java:780)
at weblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java:399)
at weblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java:306)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:544
at weblogic.security.service.SecurityServiceManager.runAs(SecurityServiceManager.java:780)
at weblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletContext.java:3105)
at weblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java:2588)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:213)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:189)
----------- Linked Exception -----------
java.lang.SecurityException: Invalid Subject: principals=[cpa_sys_web, CPA_SystemUsers]
Start server side stack trace:
java.lang.SecurityException: Invalid Subject: principals=[cpa_sys_web, CPA_SystemUsers]
at weblogic.security.service.SecurityServiceManager.seal(SecurityServiceManager.java:993)
at weblogic.rjvm.MsgAbbrevInputStream.getSubject(MsgAbbrevInputStream.java:146)
at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:309)
at weblogic.rmi.internal.BasicExecuteRequest.execute(BasicExecuteRequest.java:30)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:213)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:189)
End server side stack trace
at weblogic.rmi.internal.BasicOutboundRequest.sendReceive(BasicOutboundRequest.java:109)
at weblogic.rmi.internal.BasicRemoteRef.invoke(BasicRemoteRef.java:127)
at weblogic.jms.dispatcher.DispatcherImpl_WLStub.dispatchSyncTranFuture(Unknown
Source)
at weblogic.jms.dispatcher.DispatcherWrapperState.dispatchSyncTran(DispatcherWrapperState.java:319)
at weblogic.jms.client.JMSProducer._send(JMSProducer.java:332)
at weblogic.jms.client.JMSProducer.send(JMSProducer.java:172)
at com.cardinal.corp.logging.LoggingServiceInterfaceImpl.logEvent(LoggingServiceInterfaceImpl.java:132)
at com.cardinal.cpa.util.ClickStream.clickEventLog(Unknown Source)
at com.cardinal.cpa.presentation.action.DispatchAction.perform(Unknown
Source)
at org.apache.struts.action.ActionServlet.processActionPerform(ActionServlet.java:1787)
at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1586)
at org.apache.struts.action.ActionServlet.doGet(ActionServlet.java:492)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:740)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at weblogic.servlet.internal.ServletStubImpl$ServletInvocationAction.run(ServletStubImpl.java:1058)
at weblogic.security.service.SecurityServiceManager.runAs(SecurityServiceManager.java:780)
at weblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java:399)
at weblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java:306)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:544
at weblogic.security.service.SecurityServiceManager.runAs(SecurityServiceManager.java:780)
at weblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletContext.java:3105)
at weblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java:2588)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:213)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:189)
We are supplying a username/password in the properties passed to the InitialContext
constructor. The Servers are WebLogic 7.0 SP2.
TIA,
David
David Stacey
This is a known issue (CR094670) that was fixed in SP4. The other option is to
establish a trust relationship between the domains.