SEVERE: jdbcrealm.invaliduserreason WEB9102: Web Login Failed

Question

I'm trying to get my login form to with a MySQL Database and keep on getting the following error:

[update] --> I made some modification today this is what I'm getting right now:

SEVERE: jdbcrealm.invaliduserreason
WARNING: WEB9102: Web Login Failed: com.sun.enterprise.security.auth.login.common.LoginException: Login failed: Security Exception
WARNING: WEB9102: Web Login Failed: com.sun.enterprise.security.auth.login.common.LoginException: Login failed: Security Exception
WARNING: WEB9102: Web Login Failed: com.sun.enterprise.security.auth.login.common.LoginException: Login failed: Security Exception

That's all I get from the stack trace. I'm following this tutorial: http://blog.eisele.net/2011/01/jdbc-security-realm-and-form-based.html

This is my mapping on glassfish-web.xml:

  <security-role-mapping>
    <role-name>user</role-name>
    <group-name>user</group-name>
  </security-role-mapping>

This is my web.xml:

<security-constraint>
    <display-name>user</display-name>
    <web-resource-collection>
        <web-resource-name>Users Area</web-resource-name>
        <description>Protected Users Area</description>
        <url-pattern>/user/*</url-pattern>
        <http-method>GET</http-method>
        <http-method>PUT</http-method>
        <http-method>HEAD</http-method>
        <http-method>POST</http-method>
        <http-method>OPTIONS</http-method>
        <http-method>TRACE</http-method>
        <http-method>DELETE</http-method>
    </web-resource-collection>
    <auth-constraint>
        <description/>
        <role-name>user</role-name>
    </auth-constraint>
</security-constraint>
<login-config>
    <auth-method>FORM</auth-method>
    <realm-name>jdbcRealm</realm-name>
    <form-login-config>
        <form-login-page>/login.jsp</form-login-page>
        <form-error-page>/login-error.jsp</form-error-page>
    </form-login-config>
</login-config>
<security-role>
    <description>user security role</description>
    <role-name>user</role-name>
</security-role>

This is my login form:

    <form action="j_security_check" class="form" method="post">

            <p class="email">
                    <input type="text" name="j_username" id="j_username"/>
                    <label for="j_username">E-mail / Username</label>
            </p>

            <p class="pwd">
                    <input type="password" name="j_password" id="j_password" />
                    <label for="j_password">Password</label>
            </p>

            <p class="submit">
                    <input name="login" type="submit" value="Login" /> 
                    <input name="reset_pwd" type="submit" value="Reset Password">                                                                                                                              
            </p>

    </form>

This a screenshot of my realm setup in the server. I didn't use encryption to simplify things for the moment: Realm

Since I have nothing else in the stack but what I posted above. I'm really not sure what's wrong. I would appreciate if anyone can me a push in the right direction.

Did you find the solution? I have almost the same problem as you but Pierre's answer didn't work for me. — Bart Burg, Mar 26 '13 at 12:15
I did what was suggested by Pierre C. in the answer to this post. Additionally, repeated the tutorial twice and using `None` in the Algorithm field, I was able to figure it out.The link to the tutorial is: [jdbc-security-realm-and-form-based](http://blog.eisele.net/2011/01/jdbc-security-realm-and-form-based.html) — lv10, Mar 26 '13 at 16:51

score 4 · Accepted Answer · answered Jul 21 '12 at 01:09

4

In your jdbcRealm setup in Glassfish, be sure to write "none" in the Algorithm (instead of SHA-256 or anything else). If you leave the field blank, it won't work.

Hope this helps...

answered Jul 21 '12 at 01:09

Pierre C

2,920
1
35
35

1

I had to put MD5 in "Password Encryption Algorithm" and in "Digest Algorithm". – Omegaspard Mar 09 '17 at 01:33

score 2 · Answer 2 · answered Aug 06 '13 at 13:45

2

Silly and neat thing that fixed it for me; Realms were small letters esp in table and coloumn names, where they were caps in my mysql db. Remember to check your case sensitivity of your tables in your Realms.

answered Aug 06 '13 at 13:45

Varuna Singh

78
6

That's only relevant for MySQL, I believe, because the table names are also the file names in which the data is stored. That's important on case-sensitive file systems. Not sure it would also be a problem in Windows. If it is, then MySQL is looking for table files in a case-sensitive manner. – John Manko Feb 09 '16 at 20:39

score 1 · Answer 3 · answered Oct 26 '15 at 08:12

1

If you are using Glassfish 4 you need to complete the fields Database User and Database Password, which appears in Settings -> server-config -> Security -> Realms -> (jdbcRealm)

enter image description here

answered Oct 26 '15 at 08:12

mlago

11
1

SEVERE: jdbcrealm.invaliduserreason WEB9102: Web Login Failed

3 Answers3

Linked