[jboss-jira] [JBoss JIRA] (WFLY-2486) EJBComponentDescription#isSecurityEnabled() is incorrect
Tomasz Adamski (Jira)
issues at jboss.org
Tue Nov 26 07:59:00 EST 2019
[ https://issues.jboss.org/browse/WFLY-2486?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Tomasz Adamski closed WFLY-2486.
--------------------------------
Resolution: Out of Date
> EJBComponentDescription#isSecurityEnabled() is incorrect
> --------------------------------------------------------
>
> Key: WFLY-2486
> URL: https://issues.jboss.org/browse/WFLY-2486
> Project: WildFly
> Issue Type: Bug
> Components: EJB
> Reporter: Stuart Douglas
> Priority: Major
>
> This assumes that if the security domain is null, then the there is no security. This is incorrect, as there could be a default security domain. There could also be a security domain set, but not security annotations/metadata that is applicable to the bean. On the whole I think we should remove this method, as its use is problematic, and move any code that relies on it to org.jboss.as.ejb3.security.EJBSecurityViewConfigurator, so all the security stuff is setup in one place.
--
This message was sent by Atlassian Jira
(v7.13.8#713008)
More information about the jboss-jira
mailing list