[jboss-jira] [JBoss JIRA] (AS7-4693) Revisit authenticated user / authorized user split
[
https://issues.jboss.org/browse/AS7-4693?page=com.atlassian.jira.plugin.s...
]
Darran Lofthouse updated AS7-4693:
----------------------------------
Parent: AS7-5901
Issue Type: Sub-task (was: Task)
Revisit authenticated user / authorized user split
--------------------------------------------------
Key: AS7-4693
URL: https://issues.jboss.org/browse/AS7-4693
Project: Application Server 7
Issue Type: Sub-task
Components: Remoting, Security
Reporter: Darran Lofthouse
Assignee: Darran Lofthouse
Fix For: 7.2.0.Alpha1
When establishing a connection a remote user can specify the user they want to be
authorized as which can be different to the user they authenticate as, e.g. a user with
appropriate permissions may want to connect as an administrator or a user given access to
someone elses account may want to connect as them.
We need to re-visit this including validation that they can connect as the user they are
asking to.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira