[jboss-jira] [JBoss JIRA] (ELY-835) SecurityIdentity Automatic Outflow
Jan Kalina (JIRA)
issues at jboss.org
Fri Jan 20 17:10:00 EST 2017
[ https://issues.jboss.org/browse/ELY-835?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13351885#comment-13351885 ]
Jan Kalina commented on ELY-835:
--------------------------------
[~jmartisk] I dont think so - this only mean username will not be automatically searched in all trusted domains of current domain.
The inflow is already possible, it only have to be done explicitly - if you have obtained SecurityIdentity (admin) from trusted domain (ManagementDomain) and SecurityDomain into which you would like to inflow (BatchDomain), you can obtain SecurityIdentity of BachDomain from it.
As shown in test: https://github.com/wildfly-security/wildfly-elytron/blob/master/src/test/java/org/wildfly/security/auth/server/IdentityPropagationTest.java#L124
> SecurityIdentity Automatic Outflow
> ----------------------------------
>
> Key: ELY-835
> URL: https://issues.jboss.org/browse/ELY-835
> Project: WildFly Elytron
> Issue Type: Enhancement
> Components: API / SPI
> Reporter: Darran Lofthouse
> Assignee: Jan Kalina
> Priority: Blocker
> Fix For: 1.1.0.Beta21
>
>
> We previously discussed that when runAs is called on a SecurityIdentity this should pro-actively outflow to predefined security domains (which it has in trusted-security-domains?) so it does not need to be manually inflowed at a later point.
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list