You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@geronimo.apache.org by "David Jencks (JIRA)" <ji...@apache.org> on 2010/10/14 23:30:32 UTC
[jira] Closed: (GERONIMO-5647) Avoid an NPE if no securiy realm is
specified anywhere
[ https://issues.apache.org/jira/browse/GERONIMO-5647?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
David Jencks closed GERONIMO-5647.
----------------------------------
Resolution: Fixed
rev 1022726
> Avoid an NPE if no securiy realm is specified anywhere
> ------------------------------------------------------
>
> Key: GERONIMO-5647
> URL: https://issues.apache.org/jira/browse/GERONIMO-5647
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: Jetty
> Affects Versions: 3.0
> Reporter: David Jencks
> Assignee: David Jencks
> Fix For: 3.0
>
>
> the jetty deployment is throwing an NPE if you don't specify a realm anywhere in login config or geronimo plan. I think the result of avoiding the NPE (not configuring a ConfigurationFactory reference) will be that you can't login at runtime. The app where this showed up specifies a (incomplete) login config but doesn't have any constraints. I don't think this will introduce any security exposures.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.