portals-jetspeed-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ate Douma (JIRA)" <jetspeed-...@portals.apache.org>
Subject [jira] Assigned: (JS2-302) Password change not propagated to JBoss
Date Wed, 28 Sep 2005 23:44:49 GMT
     [ http://issues.apache.org/jira/browse/JS2-302?page=all ]

Ate Douma reassigned JS2-302:

    Assign To: Ate Douma

> Password change not propagated to JBoss
> ---------------------------------------
>          Key: JS2-302
>          URL: http://issues.apache.org/jira/browse/JS2-302
>      Project: Jetspeed 2
>         Type: Bug
>   Components: Security
>     Versions: 2.0-dev/cvs
>  Environment: JBoss/HSQL
>     Reporter: Michael Lipp
>     Assignee: Ate Douma

> In Tomcat/JBoss the credentials used to authenticate in the Web tier (Tomcat) are save
in some "global variables" during login. This information is subsequently used when a servlet
tries to access an EJB. This happens in the security "adaption layer" of tomcat.
> If a user changes his or her password, the saved credentials are not updated, and as
a consequence all accesses to EJBs fail. A workaround is to logout and re-login after a password
change (for the advanced user who knows what happens ;-)).

This message is automatically generated by JIRA.
If you think it was sent incorrectly contact one of the administrators:
For more information on JIRA, see:

To unsubscribe, e-mail: jetspeed-dev-unsubscribe@portals.apache.org
For additional commands, e-mail: jetspeed-dev-help@portals.apache.org

View raw message