[jboss-cvs] JBossAS SVN: r57430 - branches/Branch_4_0/security/src/main/org/jboss/security/auth/spi
jboss-cvs-commits at lists.jboss.org
jboss-cvs-commits at lists.jboss.org
Wed Oct 4 13:58:33 EDT 2006
Author: dimitris at jboss.org
Date: 2006-10-04 13:58:31 -0400 (Wed, 04 Oct 2006)
New Revision: 57430
Modified:
branches/Branch_4_0/security/src/main/org/jboss/security/auth/spi/Util.java
Log:
JBAS-3742 - skip potential '.' in targetUser
Modified: branches/Branch_4_0/security/src/main/org/jboss/security/auth/spi/Util.java
===================================================================
--- branches/Branch_4_0/security/src/main/org/jboss/security/auth/spi/Util.java 2006-10-04 17:25:45 UTC (rev 57429)
+++ branches/Branch_4_0/security/src/main/org/jboss/security/auth/spi/Util.java 2006-10-04 17:58:31 UTC (rev 57430)
@@ -83,7 +83,9 @@
if( trace )
log.trace("Checking user: "+user+", roles string: "+value);
// See if this entry is of the form targetUser[.GroupName]=roles
- int index = user.indexOf(roleGroupSeperator);
+ // JBAS-3742 - skip potential '.' in targetUser
+ int index = user.indexOf(roleGroupSeperator, targetUser.length());
+
boolean isRoleGroup = false;
boolean userMatch = false;
if (index > 0 && targetUser.regionMatches(0, user, 0, index) == true)
More information about the jboss-cvs-commits
mailing list