You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@geronimo.apache.org by "Aaron Mulder (JIRA)" <de...@geronimo.apache.org> on 2005/11/19 05:12:46 UTC

[jira] Resolved: (GERONIMO-1201) All our login modules implement login() incorrectly

     [ http://issues.apache.org/jira/browse/GERONIMO-1201?page=all ]
     
Aaron Mulder resolved GERONIMO-1201:
------------------------------------

    Resolution: Fixed

Revision 345629

> All our login modules implement login() incorrectly
> ---------------------------------------------------
>
>          Key: GERONIMO-1201
>          URL: http://issues.apache.org/jira/browse/GERONIMO-1201
>      Project: Geronimo
>         Type: Bug
>   Components: security
>     Versions: 1.0-M5
>     Reporter: Aaron Mulder
>     Assignee: Aaron Mulder
>      Fix For: 1.0

>
> According to the JAAS LoginModule contract, if a login fails, the LoginModule should throw an exception from the login() method (typically FailedLoginException).  We instead return false, which does not mean "login failed", but instead means "this login module is not appropriate" (the stated example for returning false is a root login for an NIS login module).

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
   http://www.atlassian.com/software/jira