[ https://issues.apache.org/jira/browse/GERONIMO-4155?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Joe Bohn updated GERONIMO-4155: ------------------------------- Fix Version/s: 2.2 2.1.2 Added fix for versions for 2.1.2 as it was indicated this was a must fix for 2.1.2. > Can use a run-as role without defining it > ----------------------------------------- > > Key: GERONIMO-4155 > URL: https://issues.apache.org/jira/browse/GERONIMO-4155 > Project: Geronimo > Issue Type: Bug > Security Level: public(Regular issues) > Components: deployment, web > Affects Versions: 2.1.1, 2.2 > Reporter: David Jencks > Assignee: David Jencks > Fix For: 2.1.2, 2.2 > > > The testsuite/enterprise-testsuite/sec-tests app demonstrates that you can > set up a servlet with a run-as role of "baz" that is not mapped to a subject > in the geronimo security element and the app will deploy and run fine. This > should result in a deployment error and failing that a runtime error. > problem present in trunk rev. 670237 -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.