[jboss-jira] [JBoss JIRA] (JBEE-190) AuthConfigFactory.getFactory() checking wrong permission.
Darran Lofthouse (JIRA)
issues at jboss.org
Fri Mar 23 10:05:02 EDT 2018
Darran Lofthouse created JBEE-190:
-------------------------------------
Summary: AuthConfigFactory.getFactory() checking wrong permission.
Key: JBEE-190
URL: https://issues.jboss.org/browse/JBEE-190
Project: JBoss JavaEE Spec APIs
Issue Type: Bug
Components: jboss-jaspi-api
Reporter: Darran Lofthouse
Assignee: Darran Lofthouse
The method currently performs the following check: -
{code:java}
//Validate the caller permission
SecurityManager sm = System.getSecurityManager();
if (sm != null)
sm.checkPermission(new SecurityPermission("getFactory"));
{code}
However it is supposed to be using 'getFactorySecurityPermission'.
--
This message was sent by Atlassian JIRA
(v7.5.0#75005)
More information about the jboss-jira
mailing list