[esb-issues] [JBoss JIRA] Updated: (JBESB-3345) Security context should contain domain information
Kevin Conner (JIRA)
jira-events at lists.jboss.org
Fri Jun 11 12:58:38 EDT 2010
[ https://jira.jboss.org/browse/JBESB-3345?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Kevin Conner updated JBESB-3345:
--------------------------------
Fix Version/s: 4.7 CP2
> Security context should contain domain information
> --------------------------------------------------
>
> Key: JBESB-3345
> URL: https://jira.jboss.org/browse/JBESB-3345
> Project: JBoss ESB
> Issue Type: Bug
> Security Level: Public(Everyone can see)
> Components: Security
> Affects Versions: 4.7 CP1
> Reporter: Kevin Conner
> Assignee: Kevin Conner
> Priority: Critical
> Fix For: 4.7 CP2
>
>
> The security context from an authentication request should check the domain and invalidate the information if the service is secured with a different security domain.
> At present the execution of a service with a different domain could result in the pipeline being executed differing credentials, one set from the first domain if the request is still valid, a second set from the second domain if it has expired.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the esb-issues
mailing list