Uploaded image for project: 'Geronimo'
  1. Geronimo
  2. GERONIMO-603

IllegalArgumentException when deploying WebApp containing a url-pattern of /* in security-constraint

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Duplicate
    • None
    • 1.2, 2.0-M2
    • web
    • None

    Description

      For example,

      <web-app>
      ..
      <security-constraint>
      <web-resource-collection>
      <web-resource-name>Access to all of the APP</web-resource-name>
      <url-pattern>/*</url-pattern>
      </web-resource-collection>
      ..
      </security-constraint>
      ..
      </web-app>

      The java.lang.IllegalArgumentException("Qualifier patterns in the URLPatternSpec cannot match the first URLPattern") exception is thrown from:

      javax.security.jacc.URLPatternSpec.<init>(java.lang.String) line: 54
      javax.security.jacc.WebResourcePermission.<init>(java.lang.String, java.lang.String) line: 54
      org.apache.geronimo.jetty.deployment.JettyModuleBuilder.buildSpecSecurityConfig(..) line: 1000
      org.apache.geronimo.jetty.deployment.JettyModuleBuilder.addGBeans(..) line: 400

      Looking at the last paragraph of page 22 of the JACC spec, it seems this should be allowed as it paragraph discusses patterns being made irrelevant by the presence of the path prefix pattern "/*" in a deployment descriptor.

      Attachments

        Activity

          People

            djencks David Jencks
            johnrsisson John Sisson
            Votes:
            1 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: