[JBoss JIRA] Created: (AS7-989) Security context is not cleared after servlet invocation

[JBoss JIRA] Created:...

[JBoss JIRA] Created: (AS7-1515)...

Carlo de Wolf (JIRA)

Friday, 10 June 2011 Fri, 10 Jun '11

1:53 p.m.

Security context is not cleared after servlet invocation -------------------------------------------------------- Key: AS7-989 URL: https://issues.jboss.org/browse/AS7-989 Project: Application Server 7 Issue Type: Bug Components: Security, Web Reporter: Carlo de Wolf Priority: Critical Fix For: 7.0.0.CR1 -- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira

Show replies by date

Jason Greene (JIRA)

Wednesday, 29 June Wed, 29 Jun

7:15 a.m.

New subject: [JBoss JIRA] Updated: (AS7-989) Security context is not cleared after servlet invocation

[ https://issues.jboss.org/browse/AS7-989?page=com.atlassian.jira.plugin.sy... ] Jason Greene updated AS7-989: ----------------------------- Fix Version/s: 7.1.0.Alpha1 (was: 7.0.0.CR1)

...

-- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira

Darran Lofthouse (JIRA)

Wednesday, 10 August Wed, 10 Aug

11:50 a.m.

New subject: [JBoss JIRA] Assigned: (AS7-989) Security context is not cleared after servlet invocation

[ https://issues.jboss.org/browse/AS7-989?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse reassigned AS7-989: ------------------------------------ Assignee: Darran Lofthouse

...

Security context is not cleared after servlet invocation -------------------------------------------------------- Key: AS7-989 URL: https://issues.jboss.org/browse/AS7-989 Project: Application Server 7 Issue Type: Bug Components: Security, Web Reporter: Carlo de Wolf Assignee: Darran Lofthouse Priority: Critical Fix For: 7.1.0.Alpha1

-- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira

Darran Lofthouse (JIRA)

12:37 p.m.

New subject: [JBoss JIRA] Commented: (AS7-989) Security context is not cleared after servlet invocation

[ https://issues.jboss.org/browse/AS7-989?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse commented on AS7-989: -------------------------------------- This appears to be a bigger issue in that we don't seem to to have the equivalent of the SecurityAssociationValve that we had from previous AS releases, not only did that valve clear the thread association it also set the new association on subsequent requests that did not require re-authentication.

...

Security context is not cleared after servlet invocation -------------------------------------------------------- Key: AS7-989 URL: https://issues.jboss.org/browse/AS7-989 Project: Application Server 7 Issue Type: Bug Components: Security, Web Reporter: Carlo de Wolf Assignee: Darran Lofthouse Priority: Critical Fix For: 7.1.0.Alpha1

-- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira

SBS JIRA Integration (JIRA)

12:53 p.m.

New subject: [JBoss JIRA] Updated: (AS7-989) Security context is not cleared after servlet invocation

[ https://issues.jboss.org/browse/AS7-989?page=com.atlassian.jira.plugin.sy... ] SBS JIRA Integration updated AS7-989: ------------------------------------- Forum Reference: http://community.jboss.org/message/619737#619737

...

Security context is not cleared after servlet invocation -------------------------------------------------------- Key: AS7-989 URL: https://issues.jboss.org/browse/AS7-989 Project: Application Server 7 Issue Type: Bug Components: Security, Web Reporter: Carlo de Wolf Assignee: Darran Lofthouse Priority: Critical Fix For: 7.1.0.Alpha1

-- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira

Marcus Moyses (JIRA)

5:41 p.m.

New subject: [JBoss JIRA] Assigned: (AS7-989) Security context is not cleared after servlet invocation

[ https://issues.jboss.org/browse/AS7-989?page=com.atlassian.jira.plugin.sy... ] Marcus Moyses reassigned AS7-989: --------------------------------- Assignee: Marcus Moyses (was: Darran Lofthouse)

...

Security context is not cleared after servlet invocation -------------------------------------------------------- Key: AS7-989 URL: https://issues.jboss.org/browse/AS7-989 Project: Application Server 7 Issue Type: Bug Components: Security, Web Reporter: Carlo de Wolf Assignee: Marcus Moyses Priority: Critical Fix For: 7.1.0.Alpha1

-- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira

Darran Lofthouse (JIRA)

Thursday, 11 August Thu, 11 Aug

12:12 p.m.

New subject: [JBoss JIRA] Updated: (AS7-989) Security context is not cleared after servlet invocation

[ https://issues.jboss.org/browse/AS7-989?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse updated AS7-989: --------------------------------- Fix Version/s: 7.0.1.Final (was: 7.1.0.Alpha1) Priority: Blocker (was: Critical) Forum Reference: http://community.jboss.org/message/619737#619737 (was: http://community.jboss.org/message/619737#619737)

...

Security context is not cleared after servlet invocation -------------------------------------------------------- Key: AS7-989 URL: https://issues.jboss.org/browse/AS7-989 Project: Application Server 7 Issue Type: Bug Components: Security, Web Reporter: Carlo de Wolf Assignee: Marcus Moyses Priority: Blocker Fix For: 7.0.1.Final

-- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira

Darran Lofthouse (JIRA)

Friday, 12 August Fri, 12 Aug

12:12 p.m.

New subject: [JBoss JIRA] Commented: (AS7-989) Security context is not cleared after servlet invocation

[ https://issues.jboss.org/browse/AS7-989?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse commented on AS7-989: -------------------------------------- https://github.com/jbossas/jboss-as/commit/4e44ecc0da8aa1b176ba999a352f7d... https://github.com/jbossas/jboss-as/commit/9c8272ecdc8eb9b24b75938945518f...

...

Security context is not cleared after servlet invocation -------------------------------------------------------- Key: AS7-989 URL: https://issues.jboss.org/browse/AS7-989 Project: Application Server 7 Issue Type: Bug Components: Security, Web Reporter: Carlo de Wolf Assignee: Marcus Moyses Priority: Blocker Fix For: 7.0.1.Final

-- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira

Marcus Moyses (JIRA)

9:02 p.m.

New subject: [JBoss JIRA] Resolved: (AS7-989) Security context is not cleared after servlet invocation

[ https://issues.jboss.org/browse/AS7-989?page=com.atlassian.jira.plugin.sy... ] Marcus Moyses resolved AS7-989. ------------------------------- Resolution: Done Created SecurityContextAssociationValve to set a SecurityContext when one doesn't exist and to destroy any existing SecurityContext after servlet invocation to prevent leaks.

...

Security context is not cleared after servlet invocation -------------------------------------------------------- Key: AS7-989 URL: https://issues.jboss.org/browse/AS7-989 Project: Application Server 7 Issue Type: Bug Components: Security, Web Reporter: Carlo de Wolf Assignee: Marcus Moyses Priority: Blocker Fix For: 7.0.1.Final

-- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira

4915

days inactive

4978

days old

jboss-jira@lists.jboss.org

Manage subscription

8 comments

5 participants

tags (0)

participants (5)

Carlo de Wolf (JIRA)
Darran Lofthouse (JIRA)
Jason Greene (JIRA)
Marcus Moyses (JIRA)
SBS JIRA Integration (JIRA)

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[JBoss JIRA] Created: (AS7-989) Security context is not cleared after servlet invocation