Details
-
Task
-
Resolution: Unresolved
-
Major
-
None
-
None
Description
AS TestSuite has exposed unprotected access across the EJB3 implementation, resulting in access exceptions.
To further guard against this, enable a permissive security manager while running the EJB3 Integration TestSuite to ensure all relevant calls are checking access in privileged blocks.
-Djava.security.manager
-Djava.security.policy==<location_of_policyfile>
-Djava.security.debug=access,failure,policy
Attachments
Issue Links
- relates to
-
EJBTHREE-1587 SessionSpecContainer missing a privileged block
-
- Closed
-
-
EJBTHREE-1586 ClassHelper missing privileged blocks
-
- Closed
-
