]
Kevin Conner updated JBESB-3345:
--------------------------------
Fix Version/s: 4.7 CP2
Security context should contain domain information
--------------------------------------------------
Key: JBESB-3345
URL:
https://jira.jboss.org/browse/JBESB-3345
Project: JBoss ESB
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Security
Affects Versions: 4.7 CP1
Reporter: Kevin Conner
Assignee: Kevin Conner
Priority: Critical
Fix For: 4.7 CP2
The security context from an authentication request should check the domain and
invalidate the information if the service is secured with a different security domain.
At present the execution of a service with a different domain could result in the
pipeline being executed differing credentials, one set from the first domain if the
request is still valid, a second set from the second domain if it has expired.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: