geronimo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "David Jencks (JIRA)" <>
Subject [jira] Created: (GERONIMO-4099) Calling isUserInRole wipes out run-as info
Date Wed, 04 Jun 2008 23:33:45 GMT
Calling isUserInRole wipes out run-as info

                 Key: GERONIMO-4099
             Project: Geronimo
          Issue Type: Bug
      Security Level: public (Regular issues)
          Components: Tomcat
    Affects Versions: 2.0.x, 2.1.x, 2.2
            Reporter: David Jencks
            Assignee: David Jencks
             Fix For: 2.1.x, 2.2

TomcatGeronimoRealm.hasRole sets callers which it has no business doing.  These were already
set during authentication.  This wipes out the run-as info which was set earlier.  Checking
the principal is also unrelated to role checks in geronimo and should be omitted.

This message is automatically generated by JIRA.
You can reply to this email to add a comment to the issue online.

View raw message