[jboss-jira] [JBoss JIRA] (AS7-4310) Re-review: EJB client should not have silet auth enabled by default

Wednesday, 18 April 2012

    [
https://issues.jboss.org/browse/AS7-4310?page=com.atlassian.jira.plugin.s...
] 

jaikiran pai commented on AS7-4310:
-----------------------------------

Assigning this to myself, since with the changes that went into
https://github.com/jbossas/jboss-as/pull/2044, this now becomes more of a EJB client
implementation changes task. Darran has mailed me the details on what was
changed/implemented in that pull request. I'll review the changes and do the necessary
EJB client updates.

...
 Re-review: EJB client should not have silet auth enabled by default
 -------------------------------------------------------------------

                 Key: AS7-4310
                 URL: https://issues.jboss.org/browse/AS7-4310
             Project: Application Server 7
          Issue Type: Bug
          Components: EJB, Security
    Affects Versions: 7.1.1.Final
            Reporter: Radoslav Husar
            Assignee: jaikiran pai
             Fix For: 7.1.2.Final-redhat1

 EJB client running on local node can bypass auth by using silet auth. This behaviour
should be reviewed whether to be disabled by default.
 See comments

https://issues.jboss.org/browse/AS7-4309?focusedCommentId=12679945&pa...

https://issues.jboss.org/browse/AS7-4309?focusedCommentId=12679955&pa...

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[jboss-jira] [JBoss JIRA] (AS7-4310) Re-review: EJB client should not have silet auth enabled by default