[TOMEE-743] TomcatSecurityService created RunAsRole not return true when call TomcatSecurityService.isCallerInRole - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.5.1
Fix Version/s: 1.5.2
Component/s: None
Labels:
None

Description

TomcatSecurityService override the createRunAsSubject and has not call the super's first.So it always create a RunAsRole principal. Its isCallerInRole only check TomcatUser and the super's isCallerInRole check Group or GroupPrincipal. Neither check the RunAsRole, so IsCallerInRole always return false.

Attachments

Activity

People

Assignee:: Romain Manni-Bucau

Reporter:: chunlinyao

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 19/Jan/13 02:19

Updated:: 06/Apr/13 10:18

Resolved:: 25/Feb/13 14:58