[jboss-jira] [JBoss JIRA] (WFLY-11094) Elytron does not do RunAs identity remote propagation
Teresa Miyar (Jira)
issues at jboss.org
Fri Nov 16 11:20:01 EST 2018
[ https://issues.jboss.org/browse/WFLY-11094?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13662823#comment-13662823 ]
Teresa Miyar commented on WFLY-11094:
-------------------------------------
RunAsPrincipal annotation is needed for this feature to work see the EJB3 reference guide:
As mentioned in the [EJB3 Reference Guide|https://docs.jboss.org/author/display/WFLY/EJB+3+Reference+Guide]:
"Whenever a run-as role is specified for a given method invocation the default anonymous principal is used as the caller principal. This principal can be overridden by specifying a run-as principal."
> Elytron does not do RunAs identity remote propagation
> -----------------------------------------------------
>
> Key: WFLY-11094
> URL: https://issues.jboss.org/browse/WFLY-11094
> Project: WildFly
> Issue Type: Bug
> Components: Security
> Reporter: Teresa Miyar
> Assignee: Teresa Miyar
> Priority: Major
> Labels: downstream_dependency
>
> Elytron does not do RunAs identity remote propagation
> -> EJB with @RunAs("ejbuser") -> remote EJB , where Elytron security forwarding is configured, @RunAs is not working. And caused authentication error when trying to call the 2nd server when @RunAs is added.
--
This message was sent by Atlassian Jira
(v7.12.1#712002)
More information about the jboss-jira
mailing list