Uploaded image for project: 'PicketLink'
  1. PicketLink
  2. PLINK-713

Principal object not handled properly with programmatic login

    XMLWordPrintable

Details

    • Bug
    • Resolution: Obsolete
    • Major
    • None
    • PLINK_2.7.0.Final
    • HTTP_SECURITY
    • None

    Description

      If PicketLink HTTP security is configured, and Servlet API programmatic login is used, the Principal object is not updated (like it would be if using standard JavaEE security). By "Principal object" I mean both request.getUserPrincipal() and @Default Principal CDI bean.

      This might break applications being ported to PL HTTP security that rely on the combination of programmatic login and Principal object.

      Attachments

        Activity

          People

            psilva@redhat.com Pedro Igor Craveiro
            dmitry.telegin Dmitry Telegin (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: