[jira] [Resolved] (SHIRO-319) SslFilter should check for request.isSecure() as well

Les Hazlewood (JIRA) Fri, 05 Aug 2011 13:23:50 -0700

     [ 
https://issues.apache.org/jira/browse/SHIRO-319?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Les Hazlewood resolved SHIRO-319.
---------------------------------

    Resolution: Fixed

added check for request.isSecure() in addition to the port matching check

> SslFilter should check for request.isSecure() as well
> -----------------------------------------------------
>
>                 Key: SHIRO-319
>                 URL: https://issues.apache.org/jira/browse/SHIRO-319
>             Project: Shiro
>          Issue Type: Improvement
>    Affects Versions: 1.0.0, 1.1.0
>            Reporter: Les Hazlewood
>            Assignee: Les Hazlewood
>             Fix For: 1.2.0
>
>
> In addition to checking the configured port, a confidentiality guarantee 
> should be checked as well.  Check for request.isSecure() as well.

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Resolved] (SHIRO-319) SslFilter should check for request.isSecure() as well

Reply via email to