[jboss-jira] [JBoss JIRA] (REMJMX-61) Ensure Subject of remote user is associated with the AccessControContext handling the request.

Darran Lofthouse (JIRA) jira-events at lists.jboss.org
Thu Aug 1 06:49:26 EDT 2013 

     [ https://issues.jboss.org/browse/REMJMX-61?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Darran Lofthouse updated REMJMX-61:
-----------------------------------

    Description: 
WildFly is being updated to add support for authorization checks, this is based on the Subject most recently associated with the AccessControlContext.

As Remoting JMX is handling remote client requests the Subject of the remote client needs associating with the AccessControlContext.

No ThreadLocals are in use so at least don't need to worry about those but do need to worry about dispatching to different threads.

This will need to apply to all versions of the protocol - this is specifically a server side change but the remote side of the connection may be using the older protocol versions.

  was:
WildFly is being updated to add support for authorization checks, this is based on the Subject most recently associated with the AccessControlContext.

As Remoting JMX is handling remote client requests the Subject of the remote client needs associating with the AccessControlContext.

No ThreadLocals are in use so at least don't need to worry about those but do need to worry about dispatching to different threads.


    
> Ensure Subject of remote user is associated with the AccessControContext handling the request.
> ----------------------------------------------------------------------------------------------
>
>                 Key: REMJMX-61
>                 URL: https://issues.jboss.org/browse/REMJMX-61
>             Project: Remoting JMX
>          Issue Type: Task
>          Components: Security
>            Reporter: Darran Lofthouse
>            Assignee: Darran Lofthouse
>             Fix For: 1.1.1.CR1, 2.0.0.Beta2
>
>
> WildFly is being updated to add support for authorization checks, this is based on the Subject most recently associated with the AccessControlContext.
> As Remoting JMX is handling remote client requests the Subject of the remote client needs associating with the AccessControlContext.
> No ThreadLocals are in use so at least don't need to worry about those but do need to worry about dispatching to different threads.
> This will need to apply to all versions of the protocol - this is specifically a server side change but the remote side of the connection may be using the older protocol versions.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the jboss-jira mailing list