Announcement Announcement Module
Collapse
No announcement yet.
X.509, user-service-ref (Spring Security 2.0.5) Page Title Module
Move Remove Collapse
This topic is closed
X
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • X.509, user-service-ref (Spring Security 2.0.5)

    We are in the process of replacing JOSSO with Spring Security. Our application server is Tomcat. We have standard userid/password authentication working, but when we try to use X.509 certificate authentication, the following error appears:
    Code:
    Authentication event AuthenticationFailureServiceExceptionEvent: ; details: org.springframework.security.ui.WebAuthenticationDetails@380f4: Remo
    teIpAddress: 127.0.0.1; SessionId: 691FBBBCF97A1C724F7B55384F14BA74; exception: UserDetailsService returned null, which is an interface contract v
    iolation
    This is working under JOSSO, so the problem is not on the server side. Per the instructions in the spring security 2.0.x documentation, I included the x509 tag in my http security namepace as follows:
    Code:
    	<http>
    		<x509 user-service-ref="userService"/>
            </http>
    
    	<beans:bean id="userService" class="<path>.PersonDetailsService"/>
    PersonDetailsService is in the war file.

    What am I missing?

  • #2
    I have included all of the 2.0.5 security jars, just in case. Same problem.

    Comment


    • #3
      What does your PersonDetailsService code do ? Can it read the CN from the X.509 certificate it receive ?

      Comment


      • #4
        I misread the error message. I thought it was saying the UserDetailsService was null, when it was saying that it returned null. Now I have to find out the value that I am supposed to retrieve.

        Comment

        Working...
        X