geronimo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Aaron Mulder (JIRA)" <>
Subject [jira] Resolved: (GERONIMO-421) Better handling for null/empty users in default LoginModules
Date Tue, 23 Nov 2004 02:21:19 GMT
     [ ]
Aaron Mulder resolved GERONIMO-421:

     Resolution: Fixed
    Fix Version: 1.0-M4

Now just fails the login for null or empty username

> Better handling for null/empty users in default LoginModules
> ------------------------------------------------------------
>          Key: GERONIMO-421
>          URL:
>      Project: Apache Geronimo
>         Type: Bug
>   Components: security
>     Versions: 1.0-M2
>     Reporter: Aaron Mulder
>     Assignee: Aaron Mulder
>      Fix For: 1.0-M4

> The PropertiesFileLoginModule throws an assertion error if no username is provided. 
I think this should just return false (or worst case, throw a regular LoginException) instead.
 I expect it to be unusual that the username would be null, but if so, it's just a plain failed
login, right?
> The SQLLoginModule doesn't seem to check at all, and would throw a NullPointerException
if the user was null.  Whatever we decide on the other one, we should do it here too.

This message is automatically generated by JIRA.
If you think it was sent incorrectly contact one of the administrators:
If you want more information on JIRA, or have a bug to report see:

View raw message