[jboss-jira] [JBoss JIRA] (AS7-6610) Invocation access control context management
David Lloyd (JIRA)
jira-events at lists.jboss.org
Tue Feb 26 22:44:57 EST 2013
[ https://issues.jboss.org/browse/AS7-6610?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12757046#comment-12757046 ]
David Lloyd commented on AS7-6610:
----------------------------------
I implemented a special interceptor type which wraps the invocation in a provided access control context. This should form the foundation of EJB privileged invocation. It is not yet clear to me how this interrelates with JACC though.
> Invocation access control context management
> --------------------------------------------
>
> Key: AS7-6610
> URL: https://issues.jboss.org/browse/AS7-6610
> Project: Application Server 7
> Issue Type: Sub-task
> Components: Application Client, CDI / Weld, EJB, JMS, POJO, REST, Security, Web
> Reporter: David Lloyd
> Fix For: 8.0.0.Alpha1
>
>
> We need to ensure that as part of our security context propagation that we're properly handling access control contexts. For example, an async EJB invocation should have the exact same access control profile as a direct EJB invocation.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list