You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@geronimo.apache.org by "Vamsavardhana Reddy (JIRA)" <ji...@apache.org> on 2007/10/31 21:58:52 UTC

[jira] Commented: (GERONIMO-3574) Review LDAPLoginModule

    [ https://issues.apache.org/jira/browse/GERONIMO-3574?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12539180 ] 

Vamsavardhana Reddy commented on GERONIMO-3574:
-----------------------------------------------

At revision: 590821  http://svn.apache.org/viewvc?view=rev&revision=590821
 o LoginModule should not add principals when login fails.
 o Other changes to bring PropertiesFileLoginModule in line with http://java.sun.com/j2se/1.5.0/docs/guide/security/jaas/JAASLMDevGuide.html
**: This fix can use a thorough review.

A test has NOT been added for the condition "LoginModule should not add principals when login fails".

> Review LDAPLoginModule
> ----------------------
>
>                 Key: GERONIMO-3574
>                 URL: https://issues.apache.org/jira/browse/GERONIMO-3574
>             Project: Geronimo
>          Issue Type: Task
>      Security Level: public(Regular issues) 
>          Components: security
>    Affects Versions: 2.0.x, 2.1
>            Reporter: Vamsavardhana Reddy
>            Assignee: Vamsavardhana Reddy
>             Fix For: 2.0.x, 2.1
>
>
> Review LDAPLoginModule for potential violations and security risks.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.