Return-Path: Delivered-To: apmail-jakarta-tomcat-dev-archive@www.apache.org Received: (qmail 20491 invoked from network); 25 Oct 2004 22:56:42 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur-2.apache.org with SMTP; 25 Oct 2004 22:56:42 -0000 Received: (qmail 22585 invoked by uid 500); 25 Oct 2004 22:56:31 -0000 Delivered-To: apmail-jakarta-tomcat-dev-archive@jakarta.apache.org Received: (qmail 22463 invoked by uid 500); 25 Oct 2004 22:56:30 -0000 Mailing-List: contact tomcat-dev-help@jakarta.apache.org; run by ezmlm Precedence: bulk List-Unsubscribe: List-Subscribe: List-Help: List-Post: List-Id: "Tomcat Developers List" Reply-To: "Tomcat Developers List" Delivered-To: mailing list tomcat-dev@jakarta.apache.org Received: (qmail 22449 invoked by uid 99); 25 Oct 2004 22:56:29 -0000 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received-SPF: pass (hermes.apache.org: local policy) Received: from [209.0.86.70] (HELO victor.wilshire.com) (209.0.86.70) by apache.org (qpsmtpd/0.28) with ESMTP; Mon, 25 Oct 2004 15:56:28 -0700 Received: from harpy.wilshire.com (harpy.wilshire.com [192.168.1.58]) by victor.wilshire.com (8.12.3/8.12.3/Debian-6.6) with ESMTP id i9PMuGdU010183 for ; Mon, 25 Oct 2004 15:56:16 -0700 Received: from bbarkerxp (foundry.wilshire.com [192.168.1.129]) by harpy.wilshire.com (8.12.10/8.12.3) with SMTP id i9PMuGFX003420 for ; Mon, 25 Oct 2004 15:56:16 -0700 (PDT) Message-ID: <01f101c4bae5$e3a7ab30$6c37a8c0@bbarkerxp> From: "Bill Barker" To: "Tomcat Developers List" References: <20041025211849.84682.qmail@minotaur.apache.org> Subject: Re: cvs commit: jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/security SecurityUtil.java Date: Mon, 25 Oct 2004 15:56:40 -0700 MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----------=_1098744976-8741-50" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 X-Zantaz-Recip: X-Scanned-By: MIMEDefang 2.44 X-Virus-Checked: Checked X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N ------------=_1098744976-8741-50 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline ----- Original Message ----- From: To: Sent: Monday, October 25, 2004 2:18 PM Subject: cvs commit: jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/security SecurityUtil.java > @@ -251,18 +251,17 @@ > if (session != null){ > subject = > (Subject)session.getAttribute(Globals.SUBJECT_ATTR); > - } > > - if (subject == null){ > - subject = new Subject(); > + if (subject == null){ > + subject = new Subject(); > > - if (principal != null){ > - subject.getPrincipals().add(principal); > + if (principal != null){ > + subject.getPrincipals().add(principal); > + } > + > + session.setAttribute(Globals.SUBJECT_ATTR, subject); > } > } > - > - if (session != null) > - session.setAttribute(Globals.SUBJECT_ATTR, subject); > } > > Subject.doAsPrivileged(subject, pea, null); With this patch, If there is no session defined, then 'subject' will be null when I get to the doAsPrivieged. This message is intended only for the use of the person(s) listed above as the intended recipient(s), and may contain information that is PRIVILEGED and CONFIDENTIAL. If you are not an intended recipient, you may not read, copy, or distribute this message or any attachment. If you received this communication in error, please notify us immediately by e-mail and then delete all copies of this message and any attachments. In addition you should be aware that ordinary (unencrypted) e-mail sent through the Internet is not secure. Do not send confidential or sensitive information, such as social security numbers, account numbers, personal identification numbers and passwords, to us via ordinary (unencrypted) e-mail. ------------=_1098744976-8741-50 Content-Type: text/plain; charset=us-ascii --------------------------------------------------------------------- To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org ------------=_1098744976-8741-50--