[
https://issues.apache.org/jira/browse/GERONIMO-4781?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
David Jencks updated GERONIMO-4781:
-----------------------------------
Attachment: GERONIMO-4781.patch
I'm going to close this as not worth worrying about, but attach a patch showing
the plausible code change.
> Not getting the callbacks filled in means the logn module should be ignored,
> not an auth failure.
> -------------------------------------------------------------------------------------------------
>
> Key: GERONIMO-4781
> URL: https://issues.apache.org/jira/browse/GERONIMO-4781
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: security
> Affects Versions: 2.2
> Reporter: David Jencks
> Assignee: David Jencks
> Fix For: 2.2
>
> Attachments: GERONIMO-4781.patch
>
>
> I think our loign module have another problem.
> Suppose you have 2 login modules configured in a realm, either one of which
> is sufficitent to authenticate. They use different kinds of callbacks.
> Given a callback handler that accepts callbacks for one of the login mdoule
> but not the other, we want the one that doesn't get the info it needs to just
> say "I dunno" by returning false, not "login failure" by throwing an
> exception.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
