[jboss-jira] [JBoss JIRA] Updated: (JBWEB-134) AuthenticatorBase calls hasResourcePermission when authentication not performed
Anil Saldhana (JIRA)
jira-events at lists.jboss.org
Mon Feb 9 12:24:45 EST 2009
[ https://jira.jboss.org/jira/browse/JBWEB-134?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Anil Saldhana updated JBWEB-134:
--------------------------------
Summary: AuthenticatorBase calls hasResourcePermission when authentication not performed (was: AuthenticatorBase calls hasResourcePermission when )
> AuthenticatorBase calls hasResourcePermission when authentication not performed
> -------------------------------------------------------------------------------
>
> Key: JBWEB-134
> URL: https://jira.jboss.org/jira/browse/JBWEB-134
> Project: JBoss Web
> Issue Type: Bug
> Security Level: Public(Everyone can see)
> Components: Tomcat
> Affects Versions: JBossWeb-2.1.1.GA
> Reporter: Anil Saldhana
> Assignee: Jean-Frederic Clere
> Priority: Critical
>
> http://svn.apache.org/viewvc/tomcat/trunk/java/org/apache/catalina/authenticator/AuthenticatorBase.java?annotate=729652
> Line 507. The check to hasResourcePermissionCheck should not happen if the local variable authRequired is false.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list