[jboss-jira] [JBoss JIRA] (SECURITY-772) SPNEGOLoginModule does not always respect removeRealmFromPrincipal
Tom Fonteyne (JIRA)
jira-events at lists.jboss.org
Tue Dec 10 06:39:07 EST 2013
Tom Fonteyne created SECURITY-772:
-------------------------------------
Summary: SPNEGOLoginModule does not always respect removeRealmFromPrincipal
Key: SECURITY-772
URL: https://issues.jboss.org/browse/SECURITY-772
Project: PicketBox
Issue Type: Bug
Security Level: Public (Everyone can see)
Components: Negotiation
Affects Versions: Negotiation_2_2_6
Reporter: Tom Fonteyne
Assignee: Tom Fonteyne
Priority: Minor
org.jboss.security.negotiation.spnego.SPNEGOLoginModule
private class AcceptSecContext:
if (gssContext.isEstablished())
{
log.warn("Authentication was performed despite already being authenticated!");
// TODO - Refactor to only do this once.
setIdentity(new KerberosPrincipal(gssContext.getSrcName().toString()));
The last line should obey the "removeRealmFromPrincipal" flag similarly as a bit further down:
setIdentity(createIdentity(gssContext.getSrcName().toString()));
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list