Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 5.0.0.Beta1
Affects Version/s: 5.0.0.Alpha4
Component/s: Security
Labels:
None

Steps to Reproduce:
Hide

/subsystem=elytron/simple-permission-mapper=some-permission-mapper:add(permission-mappings=[{permissions=[{class-name=WrongName}]}])

should throw an exception
Show
/subsystem=elytron/simple-permission-mapper=some-permission-mapper:add(permission-mappings=[{permissions=[{ class- name=WrongName}]}]) should throw an exception
Git Pull Request:
https://github.com/wildfly/wildfly-core/commit/1266d9aec57abb409a7c5dce3faf2b780bffb01b

When non-existent class-name or module (e.g. when there is a typo) is added to any Elytron permission mapper (constant-permission-mapper or simple-permission-mapper) then exception should be thrown. Otherwise it can result to situation when due to a typo some permission is granted to any identity instead of denying it - when permission in used on 'deny' side.

is related to

WFCORE-3596 further improve the permissions mapping configuration model to be manageable to by a tool

Resolved

relates to

JBEAP-9726 Incorrect permission class-name should throw exception at runtime

Resolved

WFCORE-2565 Incorrect permission class-name should throw exception at runtime

Resolved

Assignee:: Ilia Vassilev

Reporter:: Ondrej Lukas (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2018/05/03 6:26 AM

Updated:: 2022/09/09 7:09 AM

Resolved:: 2018/11/08 4:05 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates