[jira] [Updated] (ARTEMIS-5310) Check class of Principals in Subject

Sat, 22 Feb 2025 18:50:32 -0800 


     [ 
https://issues.apache.org/jira/browse/ARTEMIS-5310?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Justin Bertram updated ARTEMIS-5310:
------------------------------------
    Description: 
It's possible that a user is properly authenticated and their valid {{Subject}} 
cached but then fail to be granted access due to the {{LoginModule}} 
implementation returns an unexpected {{UserPrincipal}} implementation. 
Furthermore, upon retry the user will be granted access due to the cached 
{{Subject}} which is confusing.

This can be resolved by checking the {{Subject}} for the expected content.

  was:
It's possible that a user is properly authenticated and their valid {{Subject}} 
cached but then fail to be granted access due to the {{LoginModule}} 
implementation returns an unexpected {{UserPrincipal}} implementation. 
Furthermore, upon retry the user will be granted access due to the cached 
{{Subject}} which is confusing.

This can be resolve by checking the {{Subject}} for the expected content.


> Check class of Principals in Subject
> ------------------------------------
>
>                 Key: ARTEMIS-5310
>                 URL: https://issues.apache.org/jira/browse/ARTEMIS-5310
>             Project: ActiveMQ Artemis
>          Issue Type: Dependency upgrade
>            Reporter: Justin Bertram
>            Assignee: Justin Bertram
>            Priority: Major
>              Labels: pull-request-available
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> It's possible that a user is properly authenticated and their valid 
> {{Subject}} cached but then fail to be granted access due to the 
> {{LoginModule}} implementation returns an unexpected {{UserPrincipal}} 
> implementation. Furthermore, upon retry the user will be granted access due 
> to the cached {{Subject}} which is confusing.
> This can be resolved by checking the {{Subject}} for the expected content.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
For further information, visit: https://activemq.apache.org/contact

Reply via email to