[
http://jira.jboss.com/jira/browse/EJBTHREE-1196?page=all ]
Carlo de Wolf reassigned EJBTHREE-1196:
---------------------------------------
Assignee: Anil Saldhana
EJB3 role mapping could lead to wrong role
------------------------------------------
Key: EJBTHREE-1196
URL:
http://jira.jboss.com/jira/browse/EJBTHREE-1196
Project: EJB 3.0
Issue Type: Bug
Affects Versions: AS 4.2.2.GA
Reporter: Roland Räz
Assigned To: Anil Saldhana
In the class org.jboss.ejb3.BaseSessionContext in the method isCallerInRole(String
roleName) the security role references are resolved repeated but the mapping should be
terminated after the first match.
Consider the following mappings that would be handled in the given order. The current
implementation would resolve the mapping for role A to C but it should be B.
A -> B
B -> C
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira