[
https://jira.jboss.org/jira/browse/JBESB-2120?page=com.atlassian.jira.plu...
]
Daniel Bevenius commented on JBESB-2120:
----------------------------------------
Sorry about that one. Missed checking in jboss-xml-binding.jar that I'd placed in the
testlib directory. Should I check it in?
JaasSecurityService configured multiple times
---------------------------------------------
Key: JBESB-2120
URL:
https://jira.jboss.org/jira/browse/JBESB-2120
Project: JBoss ESB
Issue Type: Task
Security Level: Public(Everyone can see)
Components: Security
Affects Versions: 4.4 CP1
Reporter: Kevin Conner
Assignee: Daniel Bevenius
Fix For: 4.4 CP1
The JaasSecurityService is initalised and refreshed with every action processing pipeline
that contains a security configuration. This should really be a one-off configuration.
Also, the service is also modifying the JAAS configuration by setting properties and then
creating an instance of a SUN private class. We should be using the normal mechanism to
specify these policies, i.e. through login-config.xml.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira