[jira] Resolved: (JCR-636) Local AuthContext authenticates if LoginModule should be ignored

Jukka Zitting (JIRA) Thu, 23 Nov 2006 13:12:24 -0800

     [ http://issues.apache.org/jira/browse/JCR-636?page=all ]


Jukka Zitting resolved JCR-636.
-------------------------------

    Resolution: Fixed
      Assignee: Jukka Zitting

Fixed in revision 478672.

> Local AuthContext authenticates if LoginModule should be ignored
> ----------------------------------------------------------------
>
>                 Key: JCR-636
>                 URL: http://issues.apache.org/jira/browse/JCR-636
>             Project: Jackrabbit
>          Issue Type: Bug
>          Components: security
>    Affects Versions: 1.0, 1.0.1, 1.1, 0.9
>            Reporter: christian
>         Assigned To: Jukka Zitting
>             Fix For: 1.1.1
>
>
> The LoginModule indicates that it doesn't handle thecurrent login-attemp by 
> returning false:
> on login or commit invokation. It should thus be ignored.
> The LoginContext calculates the overall login success.
> In case of the local context, the login should faile if the only LoginModule 
> is ignored.
> Currently this is a success, but the 

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: 
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] Resolved: (JCR-636) Local AuthContext authenticates if LoginModule should be ignored

Reply via email to