Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-12160

EJB run-as identity gets lost if an unsecured ejb in the call stack - not fixed in Elytron

    Details

    • Type: Bug
    • Status: Verified (View Workflow)
    • Priority: Critical
    • Resolution: Done
    • Affects Version/s: 7.1.0.ER2
    • Fix Version/s: 7.1.0.ER3
    • Component/s: EJB, Security
    • Labels:
      None

      Description

      Follow up to JBEAP-11462, because this issue doesn't seem to be resolved in the case where Elytron is used.

      To reproduce, use the same steps as in JBEAP-11462, but instead of creating a jmx-console security domain, create an application-security-domain mapping from jmx-console to ApplicationDomain Elytron domain.

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  fjuma Farah Juma
                  Reporter:
                  jmartisk Jan Martiska
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  3 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: