geronimo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "David Jencks (JIRA)" <j...@apache.org>
Subject [jira] Created: (GERONIMO-4099) Calling isUserInRole wipes out run-as info
Date Wed, 04 Jun 2008 23:33:45 GMT
Calling isUserInRole wipes out run-as info
------------------------------------------

                 Key: GERONIMO-4099
                 URL: https://issues.apache.org/jira/browse/GERONIMO-4099
             Project: Geronimo
          Issue Type: Bug
      Security Level: public (Regular issues)
          Components: Tomcat
    Affects Versions: 2.0.x, 2.1.x, 2.2
            Reporter: David Jencks
            Assignee: David Jencks
             Fix For: 2.1.x, 2.2


TomcatGeronimoRealm.hasRole sets callers which it has no business doing.  These were already
set during authentication.  This wipes out the run-as info which was set earlier.  Checking
the principal is also unrelated to role checks in geronimo and should be omitted.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message