Details
-
Bug
-
Status: Open
-
Critical
-
Resolution: Unresolved
-
None
-
None
-
None
Description
When the filter code is executed, the stack will contain classes from the Http Service.
OSGi allows the administrator to give different permissions to each bundle. So if the HTTP is given less permissions by the wink-osgi bundle, the doFilter() method might fails with SecurityException.
Example:
http is given permissions A,B,C
wink-osgi is given ALL permissions
anyway, the security context, when doFilter() is executed will allow only A,B and C permissions.
Therefore it's recommended to use privileged block in doFilter() method or in winkProvider.handleRequest().