Details
-
Bug
-
Status: Resolved
-
Major
-
Resolution: Invalid
-
4.7.0
-
None
-
Ubuntu Linux 8.04, i386
Description
Since TomcatSecurityManager uses a Tomcat Realm to authenticate users, it is also expected that it override the isCallerInRole() method to delegate to Realm.hasRole() method.
Perhaps the isCallerAuthorized() method should be overridden too, using the same idea.