maguro 2005/04/23 14:42:37
Modified: modules/core/src/java/org/openejb/corba/security/jgss
GSSUPContext.java
Log:
Passwords should be explicitly passed as char arrays.
Revision Changes Path
1.5 +5 -3
openejb/modules/core/src/java/org/openejb/corba/security/jgss/GSSUPContext.java
Index: GSSUPContext.java
===================================================================
RCS file:
/home/projects/openejb/scm/openejb/modules/core/src/java/org/openejb/corba/security/jgss/GSSUPContext.java,v
retrieving revision 1.4
retrieving revision 1.5
diff -u -r1.4 -r1.5
--- GSSUPContext.java 31 Mar 2005 15:28:11 -0000 1.4
+++ GSSUPContext.java 23 Apr 2005 18:42:37 -0000 1.5
@@ -240,7 +240,9 @@
Util.decodeGSSUPToken(Util.getCodec(), buf, token);
- LoginContext context = new
LoginContext(Util.decodeGSSExportName(token.target_name), new
UsernamePasswordCallback(new String(token.username), new
String(token.password)));
+ LoginContext context = new
LoginContext(Util.decodeGSSExportName(token.target_name),
+ new
UsernamePasswordCallback(new String(token.username, "UTF-8"),
+
new String(token.password, "UTF-8").toCharArray()));
context.login();
there = new GSSUPUserName(token.username);
