2 Replies Latest reply on Apr 13, 2004 6:03 PM by starksm64

    jaas_howto on 3.2.4 reports different user to 3.2.3

    martin0
    martin0 Apr 6, 2004 9:25 AM

      Scott,

      On 3.2.3 it reports user java
      On 3.2.4 it reports user caller_java

      I thought caller_java in the example was a role - not a user.

      Why has this changed? Is this a bug?

      Thanks
      Martin


      • 2692 Views
      • Tags:
        • 1. Re: jaas_howto on 3.2.4 reports different user to 3.2.3
          martin0
          martin0 Apr 6, 2004 4:48 PM (in response to martin0)

          I see in the release notes for 3.2.4RC1 it says:

          Use the RealmMapping to obtain the CallerPrincipal mapping as the
          Principal returned from the authenticate methods. This allows a custom
          principal installed by a JAAS login module to be seen in the HttpServletRequest
          getUserPrincipal call.


          I guess that is explaining the behaviour I see.

          I'm not clear why this feature exists. Is it just a convenience thing to map the user name to some other name. In what scenario is that useful/necessary?

          Thanks
          Martin


            • Actions
          • 2. Re: jaas_howto on 3.2.4 reports different user to 3.2.3
            starksm64
            starksm64 Apr 13, 2004 6:03 PM (in response to martin0)

            The 3.2.4RC1 behavior is the correct behavior and is the behavior seen in the ejb container all along. Since the caller has a caller principal mapping, this is what should be returned.

              • Actions