[jira] Created: (GERONIMO-1201) All our login modules implement login() incorrectly

Aaron Mulder (JIRA) Fri, 18 Nov 2005 20:13:07 -0800

All our login modules implement login() incorrectly
---------------------------------------------------


         Key: GERONIMO-1201
         URL: http://issues.apache.org/jira/browse/GERONIMO-1201
     Project: Geronimo
        Type: Bug
  Components: security  
    Versions: 1.0-M5    
    Reporter: Aaron Mulder
 Assigned to: Aaron Mulder 
     Fix For: 1.0


According to the JAAS LoginModule contract, if a login fails, the LoginModule 
should throw an exception from the login() method (typically 
FailedLoginException).  We instead return false, which does not mean "login 
failed", but instead means "this login module is not appropriate" (the stated 
example for returning false is a root login for an NIS login module).

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
   http://www.atlassian.com/software/jira

[jira] Created: (GERONIMO-1201) All our login modules implement login() incorrectly

Reply via email to