Moving from Tomcat to Geronimo failed

Today I played a bit with Geronimo and the app-server was easy to install and startup. So after a management console gothrough I tried to install/deploy one of our Tomcat apps but failed miserably.
After trying to get it running for quite some time, I decided to file an issue at their beautiful JIRA installation:
[#GERONIMO-1602] Switching from Tomcat causes error in JAAS module: "Unable to instantiate login module" - ASF JIRA

I deployed the war without any deployment plan and the app seams to be working (JSPs work and the startup-servlet works as well)
But the JAASLoginModule was missing, so I could not log in. -> so far no Problem!
Afterwards I configured a security realm with the console (very nice) and after a restart my app does not complain about a missing LoginModule anymore but throws an error.
For Tomcat I do the following:
in catalina.properties I set


and the login.config looks like this:

MyApp {
de.jato.security.auth.module.JatoServletLoginModule Sufficient loginServlet="/login/login.jsp";

I tried to use a special geronimo-web.xml where I set the
But I still get the same error:
javax.security.auth.login.LoginException: org.apache.geronimo.common.GeronimoSecurityException: Unable to instantiate login module

Caused by: java.lang.ClassNotFoundException: de.jato.security.auth.module.JatoServletLoginModule

Am I doing something wrong? The class is in the war I deployed, and everything works fine in Tomcat.
Has anyone tried to accomplish this transition as well?
I know that it does not make a lot of sense to switch from Tomcat to Geronimo if you do not need any of the additional features, but I wanted to give it a try anyway.

Posted by Karsten at 08.02.06 13:29 | TrackBack

This is a classloader issue where the configuration classloader (Server) does not have access to the application's WEB-INF/lib. If you place a jar that contains your login module into the server class/jar repository, it should pick it up and everything should work fine.

Posted by: Jeff Genender at 09.02.06 16:24
Post a comment

Remember personal info?