geronimo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Aaron Mulder (JIRA)" <...@geronimo.apache.org>
Subject [jira] Created: (GERONIMO-421) Better handling for null/empty users in default LoginModules
Date Tue, 02 Nov 2004 05:08:33 GMT
Better handling for null/empty users in default LoginModules
------------------------------------------------------------

         Key: GERONIMO-421
         URL: http://nagoya.apache.org/jira/browse/GERONIMO-421
     Project: Apache Geronimo
        Type: Bug
  Components: security  
    Versions: 1.0-M2    
    Reporter: Aaron Mulder


The PropertiesFileLoginModule throws an assertion error if no username is provided.  I think
this should just return false (or worst case, throw a regular LoginException) instead.  I
expect it to be unusual that the username would be null, but if so, it's just a plain failed
login, right?

The SQLLoginModule doesn't seem to check at all, and would throw a NullPointerException if
the user was null.  Whatever we decide on the other one, we should do it here too.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://nagoya.apache.org/jira/secure/Administrators.jspa
-
If you want more information on JIRA, or have a bug to report see:
   http://www.atlassian.com/software/jira


Mime
View raw message