Geronimo
  1. Geronimo
  2. GERONIMO-4155

Can use a run-as role without defining it

    Details

    • Type: Bug Bug
    • Status: Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 2.1.1, 2.1.4, 2.2
    • Fix Version/s: 2.2
    • Component/s: deployment, web
    • Security Level: public (Regular issues)
    • Labels:
      None

      Description

      The testsuite/enterprise-testsuite/sec-tests app demonstrates that you can set up a servlet with a run-as role of "baz" that is not mapped to a subject in the geronimo security element and the app will deploy and run fine. This should result in a deployment error and failing that a runtime error.

      problem present in trunk rev. 670237

        Issue Links

          Activity

          Hide
          David Jencks added a comment -

          Implemented rev 799456, see also GERONIMO-4778

          Show
          David Jencks added a comment - Implemented rev 799456, see also GERONIMO-4778
          Hide
          David Jencks added a comment -

          A little more thought shows its easy to implement a runtime exception. Its not really possible to do deploy time checking because the credential store may require some kind of remote access not available to the deployment machine.

          Show
          David Jencks added a comment - A little more thought shows its easy to implement a runtime exception. Its not really possible to do deploy time checking because the credential store may require some kind of remote access not available to the deployment machine.
          Hide
          David Jencks added a comment -

          Not likely to get fixed for 2.2

          Show
          David Jencks added a comment - Not likely to get fixed for 2.2
          Hide
          Jarek Gawor added a comment -

          Updating versions as it probably will not get fixed for 2.1.4.

          Show
          Jarek Gawor added a comment - Updating versions as it probably will not get fixed for 2.1.4.
          Hide
          Donald Woods added a comment -

          moving from 2.1.3 to 2.1.4 as there is no patch available

          Show
          Donald Woods added a comment - moving from 2.1.3 to 2.1.4 as there is no patch available
          Hide
          Joe Bohn added a comment -

          move fix version to 2.1.3 from 2.1.2

          Show
          Joe Bohn added a comment - move fix version to 2.1.3 from 2.1.2
          Hide
          Joe Bohn added a comment -

          Added fix for versions for 2.1.2 as it was indicated this was a must fix for 2.1.2.

          Show
          Joe Bohn added a comment - Added fix for versions for 2.1.2 as it was indicated this was a must fix for 2.1.2.

            People

            • Assignee:
              David Jencks
              Reporter:
              David Jencks
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Development