You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@clerezza.apache.org by "Reto Bachmann-Gmür (JIRA)" <ji...@apache.org> on 2010/03/14 21:09:27 UTC
[jira] Closed: (CLEREZZA-161) AccesscontrollException rendering
error occuring when writing reposnse body for unpriviledged user
[ https://issues.apache.org/jira/browse/CLEREZZA-161?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Reto Bachmann-Gmür closed CLEREZZA-161.
---------------------------------------
Resolution: Fixed
Assignee: Reto Bachmann-Gmür
> AccesscontrollException rendering error occuring when writing reposnse body for unpriviledged user
> --------------------------------------------------------------------------------------------------
>
> Key: CLEREZZA-161
> URL: https://issues.apache.org/jira/browse/CLEREZZA-161
> Project: Clerezza
> Issue Type: Bug
> Reporter: Reto Bachmann-Gmür
> Assignee: Reto Bachmann-Gmür
>
> For example when user anonymous accesses a renderlet-rendered resource with an unsatisfiable Accept header a 500 error with the following message is returned instead of a 406:
> HTTP ERROR 500
> Problem accessing /bundle-doc/org.apache.clerezza.rdf.core/smart-content-binding-content-title. Reason:
> access denied (javax.security.auth.AuthPermission doAs)
> Caused by:
> java.security.AccessControlException: access denied (javax.security.auth.AuthPermission doAs)
> at java.security.AccessControlContext.checkPermission(AccessControlContext.java:342)
> at java.security.AccessController.checkPermission(AccessController.java:553)
> at java.lang.SecurityManager.checkPermission(SecurityManager.java:549)
> at javax.security.auth.Subject.doAs(Subject.java:405)
> at org.apache.clerezza.triaxrs.ResponseProcessor$1.writeTo(ResponseProcessor.java:288)
> at org.apache.clerezza.triaxrs.ResponseProcessor$1.writeTo(ResponseProcessor.java:321)
> at org.apache.clerezza.triaxrs.ResponseProcessor$1.access$200(ResponseProcessor.java:259)
> at org.apache.clerezza.triaxrs.ResponseProcessor$1$3.run(ResponseProcessor.java:292)
> at java.security.AccessController.doPrivileged(Native Method)
> at javax.security.auth.Subject.doAs(Subject.java:416)
> at org.apache.clerezza.triaxrs.ResponseProcessor$1.writeTo(ResponseProcessor.java:288)
> at org.wymiwyg.wrhapi.osgi.OsgiWebServerFactory$1.service(OsgiWebServerFactory.java:110)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
> at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:502)
> at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:389)
> at org.ops4j.pax.web.service.jetty.internal.HttpServiceServletHandler.handle(HttpServiceServletHandler.java:64)
> at org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:181)
> at org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:765)
> at org.ops4j.pax.web.service.jetty.internal.HttpServiceContext.handle(HttpServiceContext.java:111)
> at org.ops4j.pax.web.service.jetty.internal.JettyServerHandlerCollection.handle(JettyServerHandlerCollection.java:64)
> at org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:152)
> at org.mortbay.jetty.Server.handle(Server.java:326)
> at org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:534)
> at org.mortbay.jetty.HttpConnection$RequestHandler.headerComplete(HttpConnection.java:864)
> at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:539)
> at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:212)
> at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:404)
> at org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.java:409)
> at org.mortbay.thread.QueuedThreadPool$PoolThread.run(QueuedThreadPool.java:520)
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.