Tomcat jacc usage is messed up
------------------------------
Key: GERONIMO-4124
URL: https://issues.apache.org/jira/browse/GERONIMO-4124
Project: Geronimo
Issue Type: Bug
Security Level: public (Regular issues)
Components: Tomcat
Affects Versions: 2.1.1, 2.0.2, 2.2
Reporter: David Jencks
Assignee: David Jencks
Fix For: 2.0.x, 2.1.2, 2.2
Several problems:
1. UserDataPermissions are not getting evaluated by jacc due to the check for
Subject in handler data.
2. Subject is never set into handler data (also a problem in jetty, dunno
about openejb).
3. TomcatGeronimoRealm is calling ContextManager.setCallers before permission
checks. This is wrong.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
