[jboss-jira] [JBoss JIRA] (WFLY-11665) Security identity in contextual proxy not available in message driven bean

[Stephen Coy (Jira)]

Stephen Coy created WFLY-11665:
----------------------------------

             Summary: Security identity in contextual proxy not available in message driven bean
                 Key: WFLY-11665
                 URL: https://issues.jboss.org/browse/WFLY-11665
             Project: WildFly
          Issue Type: Bug
          Components: EJB, JMS
    Affects Versions: 15.0.1.Final
            Reporter: Stephen Coy
            Assignee: Jeff Mesnil


1. Contextual proxies are not accessible from message driven beans due to a ClassNotFoundException for `org.jboss.as.ejb3.component.concurrent.EJBContextHandleFactory$EJBContextHandle`.

2. Resolving the above leads to a further problem:

Contextual proxies (see https://javaee.github.io/javaee-spec/javadocs/javax/enterprise/concurrent/ContextService.html) delivered via ObjectMessage to a message driven bean do not completely survive object serialisation.

Specifically, the {{org.jboss.as.ee.concurrent.IdentityAwareProxyInvocationHandler}} that supports this has a transient instance variable:

{code}
   private final transient SecurityIdentity securityIdentity;
{code}

which means that the proxied object does not have access to the caller's security identity as required by the EE Concurrency Utility specs.



--
This message was sent by Atlassian Jira
(v7.12.1#712002)