Return-Path: Delivered-To: apmail-geronimo-dev-archive@www.apache.org Received: (qmail 13242 invoked from network); 15 Aug 2005 23:22:11 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 15 Aug 2005 23:22:11 -0000 Received: (qmail 84134 invoked by uid 500); 15 Aug 2005 23:22:01 -0000 Delivered-To: apmail-geronimo-dev-archive@geronimo.apache.org Received: (qmail 83932 invoked by uid 500); 15 Aug 2005 23:21:59 -0000 Mailing-List: contact dev-help@geronimo.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: dev@geronimo.apache.org List-Id: Delivered-To: mailing list dev@geronimo.apache.org Received: (qmail 83483 invoked by uid 99); 15 Aug 2005 23:21:58 -0000 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests=SPF_FAIL X-Spam-Check-By: apache.org Received: from [192.87.106.226] (HELO ajax.apache.org) (192.87.106.226) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 15 Aug 2005 16:21:56 -0700 Received: from ajax.apache.org (ajax.apache.org [127.0.0.1]) by ajax.apache.org (Postfix) with ESMTP id D6FF5E6 for ; Tue, 16 Aug 2005 01:21:55 +0200 (CEST) Message-ID: <1477571695.1124148115879.JavaMail.jira@ajax.apache.org> Date: Tue, 16 Aug 2005 01:21:55 +0200 (CEST) From: "David Jencks (JIRA)" To: dev@geronimo.apache.org Subject: [jira] Closed: (GERONIMO-668) Unable to determine username from EJB method In-Reply-To: <173911631.1118395008336.JavaMail.jira@ajax.apache.org> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N [ http://issues.apache.org/jira/browse/GERONIMO-668?page=all ] David Jencks closed GERONIMO-668: --------------------------------- Resolution: Fixed Implemented by adding a GeronimoCallerPrincipal interface, making GeronimoUserPrincipal implement it, and returning it preferentially for getCallerPrincipal. Reuse of GeronimoUserPrincipal may possibly lead to confusion if there are several login modules all adding GeronimoUserPrincipal instances, but this seems somewhat unlikely. Sending modules/security/src/java/org/apache/geronimo/security/ContextManager.java Adding modules/security/src/java/org/apache/geronimo/security/realm/providers/GeronimoCallerPrincipal.java Sending modules/security/src/java/org/apache/geronimo/security/realm/providers/GeronimoUserPrincipal.java Adding modules/security/src/test/org/apache/geronimo/security/ContextManagerTest.java Transmitting file data .... Committed revision 232906. > Unable to determine username from EJB method > -------------------------------------------- > > Key: GERONIMO-668 > URL: http://issues.apache.org/jira/browse/GERONIMO-668 > Project: Geronimo > Type: Bug > Versions: 1.0-M4 > Reporter: Ivan Dubrov > Assignee: David Jencks > Fix For: 1.0-M5 > > When calling EJB method from the Web module some important security context information (username) is lost. It is impossible to determine caller user name from the EJB method. EJBContext.getCallerPrincipal().getName() returns something like this: > [org.apache.geronimo.security.realm.providers.GeronimoGroupPrincipal: manager] > Note that only group name can be determined from this string or from the EJBMethod.getCallerPrincipal(). -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira