Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-15961

ElytronSASClientInterceptor needs PrivilegedActions for SecurityDomain access.

    XMLWordPrintable

Details

    Description

      The ElytronSASClientInterceptor needs PrivilegedActions for the SecurityDomain interactions, this class is configured at the subsystem level so deployments should not need the permissions for this class to function correctly.

      Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("org.wildfly.security.permission.ElytronPermission" "getSecurityDomain")" in code source "(vfs:/content/client.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.client.jar" from Service Module Loader")
  at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:309)
  at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:201)
  at org.wildfly.security.auth.server.SecurityDomain.getCurrent(SecurityDomain.java:168)
  at org.wildfly.iiop.openjdk.csiv2.ElytronSASClientInterceptor.send_request(ElytronSASClientInterceptor.java:171)

      Attachments

        Activity

          People

            darran.lofthouse@redhat.com Darran Lofthouse
            darran.lofthouse@redhat.com Darran Lofthouse
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: