Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Won't Do
Priority: Major
Fix Version/s: None
Affects Version/s: None
Component/s: Security
Labels:
None

Target Release:

7.3.z.GA
Steps to Reproduce:

Hide

Run the test: mvn test -Dtest=InjectPrincipalTestCase

Repo: git@github.com:nziakova/wildfly.git
Branch: wfly11587-followup

When running the test without elytron there is an error on line 58 inside InjectPrincipalTestCase. This is correct behaviour and this error is expected. However this line passes when Elytron is enabled (mvn test -Dtest=InjectPrincipalTestCase -Delytron). Instead, error is thrown on line 59 but that concerns ~~WFLY-12537~~ and not this issue.

Show
Run the test: mvn test -Dtest=InjectPrincipalTestCase Repo: git@github.com:nziakova/wildfly.git Branch: wfly11587-followup When running the test without elytron there is an error on line 58 inside InjectPrincipalTestCase. This is correct behaviour and this error is expected. However this line passes when Elytron is enabled (mvn test -Dtest=InjectPrincipalTestCase -Delytron). Instead, error is thrown on line 59 but that concerns WFLY-12537 and not this issue.

SFDC Cases Counter:
SFDC Cases Links:

Description

This is a follow up on ~~WFLY-11604~~. Principal should be anonymous when injected inside a bean that has RunAsPrincipal annotation but no incoming RunAs identity. This is because the call does not pass to another EJB and therefore there is no outbound call. This works for legacy but not for Elytron.

Attachments

Issue Links

clones

WFLY-12538 Principal injected in a secured bean is different when Elytron is activated

Closed

Activity

People

Assignee:: Bartosz Baranowski

Reporter:: Lin Gao

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2020/10/20 11:41 PM

Updated:: 2022/06/10 2:59 PM

Resolved:: 2021/06/07 8:35 AM