Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 1.0-M3
    • 1.0-M4
    • web
    • None

    Description

      Currently we are setting the component jndi context, the thread context classloader, and the security info per web app in the handle method of a web app context subclass. This is wrong. This handle method is only called once from the socket listener. Dispatches to other servlets, in particular servlets in other web apps, do not go through this handle method again. Therefore the component context, transaction context, classloader, and security context are still those of the first web app accessed.

      The solution appears to be to remove this code from the handle method and put it in enterContextScope and exitContextScope, public methods of Jetty's HttpContext. These methods are called by dispatchers when changing web apps.

      Attachments

        Activity

          Transition Time In Source Status Execution Times
          David Jencks made transition -
          Open Closed
          19d 12h 43m 1

          People

            djencks David Jencks
            djencks David Jencks
            Votes:
            0 Vote for this issue
            Watchers:
            Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment