Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-9039

EJB with Elytron propagate identity even when it should not

    Details

    • Type: Bug
    • Status: Closed (View Workflow)
    • Priority: Blocker
    • Resolution: Done
    • Affects Version/s: 11.0.0.Alpha1
    • Fix Version/s: 11.0.0.Beta1
    • Component/s: Security
    • Labels:
      None
    • Steps to Reproduce:
      Hide
      mvn clean install -Dwildfly.tmp.enable.invocation.tests=true -DallTests -pl testsuite/integration/basic -Dtest=org.jboss.as.test.integration.ejb.security.RunAsPrincipalTestCase#testSingletonPostconstructSecurityNotPropagating
      
      Show
      mvn clean install -Dwildfly.tmp.enable.invocation.tests= true -DallTests -pl testsuite/integration/basic -Dtest=org.jboss.as.test.integration.ejb.security.RunAsPrincipalTestCase#testSingletonPostconstructSecurityNotPropagating

      Description

      In RunAsPrincipalTestCase#testSingletonPostconstructSecurityNotPropagating, when Elytron enabled, identity (including Admin role) is propagated into StatelessBBean:

      StatelessSingletonUseBean
      SimpleSingletonBean
      | check Admin in [Admin] (has required role)
      StatelessBBean
      

      In non-Elytron case the check is unsuccessful as test require, because identity is not propagated:

      StatelessSingletonUseBean
      SimpleSingletonBean
      | authorize
      EXCEPTION
       methodRoles = Admin
       securityContext.subjectInfo = anonymouse
      

      This is lack of WFLY-981 fix when Elytron used: Identity is propagated from @PostConstruct method.

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  honza889 Jan Kalina
                  Reporter:
                  honza889 Jan Kalina
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  2 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: