Password change not propagated to JBoss
---------------------------------------
Key: JS2-302
URL: http://issues.apache.org/jira/browse/JS2-302
Project: Jetspeed 2
Type: Bug
Components: Security
Versions: 2.0-dev/cvs
Environment: JBoss/HSQL
Reporter: Michael Lipp
In Tomcat/JBoss the credentials used to authenticate in the Web tier (Tomcat)
are save in some "global variables" during login. This information is
subsequently used when a servlet tries to access an EJB. This happens in the
security "adaption layer" of tomcat.
If a user changes his or her password, the saved credentials are not updated,
and as a consequence all accesses to EJBs fail. A workaround is to logout and
re-login after a password change (for the advanced user who knows what happens
;-)).
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
