[GERONIMO-4099] Calling isUserInRole wipes out run-as info - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 2.0.x, 2.1.x, 2.2
Fix Version/s: 2.1.2, 2.2
Component/s: Tomcat
Security Level: public (Regular issues)
Labels:
None

Description

TomcatGeronimoRealm.hasRole sets callers which it has no business doing. These were already set during authentication. This wipes out the run-as info which was set earlier. Checking the principal is also unrelated to role checks in geronimo and should be omitted.

Attachments

Activity

People

Assignee:: David Jencks

Reporter:: David Jencks

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 04/Jun/08 23:32

Updated:: 14/Jul/08 22:37

Resolved:: 14/Jul/08 22:37