[jboss-jira] [JBoss JIRA] (WFLY-3691) AuditProvider mentions "[Success]" even if username/password is invalid
RH Bugzilla Integration (JIRA)
issues at jboss.org
Wed Jul 30 07:26:29 EDT 2014
[ https://issues.jboss.org/browse/WFLY-3691?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12989052#comment-12989052 ]
RH Bugzilla Integration commented on WFLY-3691:
-----------------------------------------------
Josef Cacek <jcacek at redhat.com> changed the Status of [bug 1054556|https://bugzilla.redhat.com/show_bug.cgi?id=1054556] from ASSIGNED to POST
> AuditProvider mentions "[Success]" even if username/password is invalid
> -----------------------------------------------------------------------
>
> Key: WFLY-3691
> URL: https://issues.jboss.org/browse/WFLY-3691
> Project: WildFly
> Issue Type: Bug
> Security Level: Public(Everyone can see)
> Components: Security
> Affects Versions: 8.1.0.Final
> Reporter: Josef Cacek
> Assignee: Josef Cacek
>
> Description of problem:
> AuditProvider in security-domain mentions "[Success]" as follow:-
> 11:37:26,835 TRACE [org.jboss.security.audit] (HttpManagementService-threads - 3) [Success]Source=org.jboss.as.security.service.SimpleSecurityManager;Action=authentication;principal=admin;
> even if a username/password is wrong.
--
This message was sent by Atlassian JIRA
(v6.2.6#6264)
More information about the jboss-jira
mailing list