You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@geronimo.apache.org by "Vamsavardhana Reddy (JIRA)" <ji...@apache.org> on 2007/10/22 07:59:50 UTC

[jira] Updated: (GERONIMO-3543) SQLLoginModule successfully authenticates non-existent users

     [ https://issues.apache.org/jira/browse/GERONIMO-3543?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Vamsavardhana Reddy updated GERONIMO-3543:
------------------------------------------

       Regression: [Regression]
       Patch Info: [Patch Available]
    Fix Version/s: 2.1
                   2.0.x
         Assignee: Vamsavardhana Reddy

> SQLLoginModule successfully authenticates non-existent users
> ------------------------------------------------------------
>
>                 Key: GERONIMO-3543
>                 URL: https://issues.apache.org/jira/browse/GERONIMO-3543
>             Project: Geronimo
>          Issue Type: Bug
>      Security Level: public(Regular issues) 
>          Components: security
>    Affects Versions: 2.0, 2.0.1, 2.0.2, 2.1
>            Reporter: Jarek Gawor
>            Assignee: Vamsavardhana Reddy
>            Priority: Critical
>             Fix For: 2.0.x, 2.1
>
>
> Authentication succeeds with SQLLoginModule if logging in with an username that does not exist in the database.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.