jackrabbit-oak-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Manfred Baedke (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (OAK-8404) AbstractLoginModule#logout() may fail for impersonated users whose subject provides admin credentials
Date Mon, 17 Jun 2019 14:08:00 GMT

    [ https://issues.apache.org/jira/browse/OAK-8404?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16865631#comment-16865631
] 

Manfred Baedke commented on OAK-8404:
-------------------------------------

Patch provided. I'll create a test case.

> AbstractLoginModule#logout() may fail for impersonated users whose subject provides admin
credentials
> -----------------------------------------------------------------------------------------------------
>
>                 Key: OAK-8404
>                 URL: https://issues.apache.org/jira/browse/OAK-8404
>             Project: Jackrabbit Oak
>          Issue Type: Bug
>          Components: security-spi
>            Reporter: Manfred Baedke
>            Assignee: Manfred Baedke
>            Priority: Major
>         Attachments: oak-8404.patch
>
>
> More precisely, this will happen when the subject doesn't provide public credentials.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message