You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@tomee.apache.org by "Jean-Louis Monteiro (Jira)" <ji...@apache.org> on 2021/04/02 18:40:00 UTC
[jira] [Resolved] (TOMEE-2992) [Certification/TCK] Tomcat Callback
handler not consistent with authenticator
[ https://issues.apache.org/jira/browse/TOMEE-2992?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jean-Louis Monteiro resolved TOMEE-2992.
----------------------------------------
Fix Version/s: 8.0.7
9.0.0-M2
Assignee: Jean-Louis Monteiro
Resolution: Fixed
> [Certification/TCK] Tomcat Callback handler not consistent with authenticator
> -----------------------------------------------------------------------------
>
> Key: TOMEE-2992
> URL: https://issues.apache.org/jira/browse/TOMEE-2992
> Project: TomEE
> Issue Type: Improvement
> Reporter: Jean-Louis Monteiro
> Assignee: Jean-Louis Monteiro
> Priority: Major
> Fix For: 9.0.0-M2, 8.0.7
>
>
> Tomcat supports JASPIC since version 8.5, but it does not pass the TCK due to a CallbackHandler issue. The org.apache.catalina.authenticator.jaspic.CallbackHandlerImpl class is not consistent with what is done in AuthenticatorBase.
>
> The callback handler keeps adding to the subject everytime it's called which results in many principals being added to the same subject.
>
> But on the other hand the authenticator base only pulls the first principal from the Subject.
>
> We should either merge all principals in the authenticator base or merge in the callback handler.
>
>
>
> See issue
> https://github.com/eclipse-ee4j/jakartaee-tck/issues/575
--
This message was sent by Atlassian Jira
(v8.3.4#803005)