[ https://issues.jboss.org/browse/AS7-2771?page=com.atlassian.jira.plugin.s... ] Thomas Diesler updated AS7-2771: -------------------------------- Summary: ModelControllerClient operations don't fail on invalid username/password (was: ModelControllerClient operations don't fail on invalud username/password) Description: Running org.jboss.as.test.smoke.jsr88.EnterpriseDeploymentTestCase Tests run: 7, Failures: 0, Errors: 0, Skipped: 0, Time elapsed: 128.98 sec There should be a test failure with this {code} @Test public void testListAvailableModulesUnauthorized() throws Exception { DeploymentManager manager = getDeploymentManager("nobody", "nopass"); Target[] targets = manager.getTargets(); // [TODO] This should fail already TargetModuleID[] availableModules = manager.getAvailableModules(ModuleType.EAR, targets); assertNull(availableModules); ProgressObject progress = jsr88Deploy(manager, getEarArchive()); TargetModuleID[] targetModules = progress.getResultTargetModuleIDs(); try { availableModules = manager.getAvailableModules(ModuleType.EAR, targets); assertNotNull(availableModules); assertEquals(1, availableModules.length); TargetModuleID targetModuleID = availableModules[0]; String moduleID = targetModuleID.getModuleID(); assertTrue("Ends with deployment-app.ear", moduleID.endsWith("deployment-app.ear")); // [TODO] verify child modules } finally { jsr88Undeploy(manager, targetModules); } } {code} was: Running org.jboss.as.test.smoke.jsr88.EnterpriseDeploymentTestCase Tests run: 7, Failures: 0, Errors: 0, Skipped: 0, Time elapsed: 128.98 sec There should be a test failure with this {code} @Test public void testListAvailableModulesUnauthorized() throws Exception { DeploymentManager manager = getDeploymentManager("nobody", "nopass"); Target[] targets = manager.getTargets(); // [TODO] This should fail already TargetModuleID[] availableModules = manager.getAvailableModules(ModuleType.EAR, targets); assertNull(availableModules); ProgressObject progress = jsr88Deploy(manager, getEarArchive()); TargetModuleID[] targetModules = progress.getResultTargetModuleIDs(); try { availableModules = manager.getAvailableModules(ModuleType.EAR, targets); assertNotNull(availableModules); assertEquals(1, availableModules.length); TargetModuleID targetModuleID = availableModules[0]; String moduleID = targetModuleID.getModuleID(); assertTrue("Ends with deployment-app.ear", moduleID.endsWith("deployment-app.ear")); // [TODO] verify child modules } finally { jsr88Undeploy(manager, targetModules); } } {code} -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira

[ https://issues.jboss.org/browse/AS7-2771?page=com.atlassian.jira.plugin.s... ] Thomas Diesler commented on AS7-2771: ------------------------------------- Here is a commit that adds the test https://github.com/tdiesler/jboss-as/commit/2d45709c9e45 -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira

[ https://issues.jboss.org/browse/AS7-2771?page=com.atlassian.jira.plugin.s... ] Darran Lofthouse commented on AS7-2771: --------------------------------------- This is not a bug, if you are running the test local to the AS instance the local authentication mechanism will be triggered before the username and password needs to be used. At this stage individual users do not have their own permissions, once we do have users with different permissions I will re-visit this. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira

[ https://issues.jboss.org/browse/AS7-2771?page=com.atlassian.jira.plugin.s... ] Darran Lofthouse resolved AS7-2771. ----------------------------------- Resolution: Out of Date I am resolving as out of date as adding authorization checks will be handled under their own Jira's - in the meantime only authenticated connections are allowed by default. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira