RemoteAuthorizationException

**scknight2** · Mar 7th, 2005, 02:48 PM

How can I determine what caused a RemoteAuthorizationException when using Acegi with remoting? It seems to always return "Bad credentials" even when I supply a username that does not exist.

Thanks.

**Ben Alex** · Mar 10th, 2005, 04:13 AM

This is often by design. Try setting the DaoAuthenticationProvider.hideUserNotFoundExceptio ns property. Also note the code of RemoteAuthenticationManagerImpl does expose the exception message:

Code:

    public GrantedAuthority&#91;&#93; attemptAuthentication&#40;String username,
        String password&#41; throws RemoteAuthenticationException &#123;
        UsernamePasswordAuthenticationToken request = new UsernamePasswordAuthenticationToken&#40;username,
                password&#41;;

        try &#123;
            return authenticationManager.authenticate&#40;request&#41;.getAuthorities&#40;&#41;;
        &#125; catch &#40;AuthenticationException authEx&#41; &#123;
            throw new RemoteAuthenticationException&#40;authEx.getMessage&#40;&#41;&#41;;
        &#125;
    &#125;

Thread: RemoteAuthorizationException

Thread Tools

Display

RemoteAuthorizationException

Posting Permissions