[jboss-jira] [JBoss JIRA] (WFLY-2585) Correct the identification of the current caller when a security manager is enabled.
Darran Lofthouse (JIRA)
jira-events at lists.jboss.org
Wed Nov 27 09:09:05 EST 2013
[ https://issues.jboss.org/browse/WFLY-2585?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12927087#comment-12927087 ]
Darran Lofthouse commented on WFLY-2585:
----------------------------------------
In addition to the access control related changes thoroughly check additional places where the current AccessControlContext is obtained within a PriviledgedAction.
Some places may want a clean AccessControlContext that looses the information about the caller, others may genuinely want the current AccessControlContext but instead accidentally replace it.
> Correct the identification of the current caller when a security manager is enabled.
> ------------------------------------------------------------------------------------
>
> Key: WFLY-2585
> URL: https://issues.jboss.org/browse/WFLY-2585
> Project: WildFly
> Issue Type: Bug
> Security Level: Public(Everyone can see)
> Components: Domain Management
> Reporter: Darran Lofthouse
> Assignee: Darran Lofthouse
> Priority: Critical
> Fix For: 8.0.0.CR1
>
>
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list