Uploaded image for project: 'PicketBox '
  1. PicketBox
  2. SECURITY-872

AbstractServerLoginModule.abort() always returns true

    XMLWordPrintable

Details

    • Bug
    • Resolution: Unresolved
    • Major
    • None
    • PicketBox_4_0_21.Final
    • PicketBox
    • None

    Description

      According to the spec[1], abort() should return true or throw exception if login() succeeded, and should return false if login() failed. However, abort() of subclasses of org.jboss.security.auth.spi.AbstractServerLoginModule always returns true.

      [1]: http://docs.oracle.com/javase/6/docs/technotes/guides/security/jaas/JAASLMDevGuide.html

      Attachments

        Activity

          People

            Unassigned Unassigned
            rhn-support-hokuda Hisanobu Okuda
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated: