JaasSecurityService configured multiple times
---------------------------------------------
Key: JBESB-2120
URL:
https://jira.jboss.org/jira/browse/JBESB-2120
Project: JBoss ESB
Issue Type: Task
Security Level: Public (Everyone can see)
Components: Security
Affects Versions: 4.4 CP1
Reporter: Kevin Conner
Assignee: Daniel Bevenius
Fix For: 4.4 CP1
The JaasSecurityService is initalised and refreshed with every action processing pipeline
that contains a security configuration. This should really be a one-off configuration.
Also, the service is also modifying the JAAS configuration by setting properties and then
creating an instance of a SUN private class. We should be using the normal mechanism to
specify these policies, i.e. through login-config.xml.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira