morciuch 2003/06/23 11:50:18
Modified: docs/site changes.html
src/java/org/apache/jetspeed/services/security/ldap
LDAPAuthentication.java
src/java/org/apache/jetspeed/services/security/turbine
TurbineAuthentication.java
xdocs changes.xml
Log:
Disabled the ability to login as anonymous user (see Bugzilla bug# 17932)
Revision Changes Path
1.150 +9 -0 jakarta-jetspeed/docs/site/changes.html
Index: changes.html
===================================================================
RCS file: /home/cvs/jakarta-jetspeed/docs/site/changes.html,v
retrieving revision 1.149
retrieving revision 1.150
diff -u -r1.149 -r1.150
--- changes.html 10 Jun 2003 16:09:22 -0000 1.149
+++ changes.html 23 Jun 2003 18:50:18 -0000 1.150
@@ -140,6 +140,15 @@
</li>
-->
<li>
+ Add - Bug # 17932 - 2003/06/23 - Disabled the ability to login as anonymous
user (MO)
+</li>
+<li>
+ Add - Bug # 20692 - 2003/06/11 - Exposed BASICAuthIFramePortlet and
IFramePortlet to non-admin users (MO)
+</li>
+<li>
+ Add - Bug # 18632 - 2003/06/11 - Added BASICAuthIFramePortlet contributed by
Jacob Kjome (MO)
+</li>
+<li>
Add - Bug # 15684 - 2003/06/09 - It is no longer possible to remove predefined
system users/roles/groups/permissions (MO)
</li>
<li>
1.7 +7 -1
jakarta-jetspeed/src/java/org/apache/jetspeed/services/security/ldap/LDAPAuthentication.java
Index: LDAPAuthentication.java
===================================================================
RCS file:
/home/cvs/jakarta-jetspeed/src/java/org/apache/jetspeed/services/security/ldap/LDAPAuthentication.java,v
retrieving revision 1.6
retrieving revision 1.7
diff -u -r1.6 -r1.7
--- LDAPAuthentication.java 4 Mar 2003 00:05:11 -0000 1.6
+++ LDAPAuthentication.java 23 Jun 2003 18:50:18 -0000 1.7
@@ -111,6 +111,12 @@
public JetspeedUser login(String username, String password)
throws LoginException
{
+
+ if (username.equals(this.anonymousUser))
+ {
+ throw new LoginException("Anonymous user cannot login");
+ }
+
JetspeedUser user = null;
BasicAttributes attr= new BasicAttributes();
String[] attrs = {"ou", "userPassword", "uid", "mail"};
1.7 +7 -1
jakarta-jetspeed/src/java/org/apache/jetspeed/services/security/turbine/TurbineAuthentication.java
Index: TurbineAuthentication.java
===================================================================
RCS file:
/home/cvs/jakarta-jetspeed/src/java/org/apache/jetspeed/services/security/turbine/TurbineAuthentication.java,v
retrieving revision 1.6
retrieving revision 1.7
diff -u -r1.6 -r1.7
--- TurbineAuthentication.java 7 May 2003 15:16:53 -0000 1.6
+++ TurbineAuthentication.java 23 Jun 2003 18:50:18 -0000 1.7
@@ -127,6 +127,12 @@
public JetspeedUser login(String username, String password)
throws LoginException
{
+
+ if (username.equals(this.anonymousUser))
+ {
+ throw new LoginException("Anonymous user cannot login");
+ }
+
JetspeedUser user = null;
username = JetspeedSecurity.convertUserName(username);
1.171 +4 -1 jakarta-jetspeed/xdocs/changes.xml
Index: changes.xml
===================================================================
RCS file: /home/cvs/jakarta-jetspeed/xdocs/changes.xml,v
retrieving revision 1.170
retrieving revision 1.171
diff -u -r1.170 -r1.171
--- changes.xml 11 Jun 2003 21:47:47 -0000 1.170
+++ changes.xml 23 Jun 2003 18:50:18 -0000 1.171
@@ -24,6 +24,9 @@
</li>
-->
<li>
+ Add - Bug # 17932 - 2003/06/23 - Disabled the ability to login as anonymous
user (MO)
+</li>
+<li>
Add - Bug # 20692 - 2003/06/11 - Exposed BASICAuthIFramePortlet and
IFramePortlet to non-admin users (MO)
</li>
<li>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
