geronimo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Alan Cabrera (JIRA)" <...@geronimo.apache.org>
Subject [jira] Commented: (GERONIMO-668) Unable to determine username from EJB method
Date Wed, 27 Jul 2005 04:18:23 GMT
    [ http://issues.apache.org/jira/browse/GERONIMO-668?page=comments#action_12316845 ] 

Alan Cabrera commented on GERONIMO-668:
---------------------------------------

What about having a special Geronimo class that is designated as by Geronimo as primary, then
have a convention where a special login module would insert it into the subject?  This way,
people could have a variety of schemes to insert the primary principal by simply writing their
own login module that followed the convention and we wouldn't have to have an "uber" metadata
and code to handle all the different possibilities.

> Unable to determine username from EJB method
> --------------------------------------------
>
>          Key: GERONIMO-668
>          URL: http://issues.apache.org/jira/browse/GERONIMO-668
>      Project: Geronimo
>         Type: Bug
>     Versions: 1.0-M4
>     Reporter: Ivan Dubrov
>     Assignee: David Jencks
>      Fix For: 1.0-M4, 1.0-M5

>
> When calling EJB method from the Web module some important security context information
(username) is lost.  It is impossible to determine caller user name from the EJB method. EJBContext.getCallerPrincipal().getName()
returns something like this:
> [org.apache.geronimo.security.realm.providers.GeronimoGroupPrincipal: manager]
> Note that only group name can be determined from this string or from the EJBMethod.getCallerPrincipal().

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
   http://www.atlassian.com/software/jira


Mime
View raw message