Angela Schreiber created OAK-8801:
-------------------------------------
Summary: LoginModuleImpl will not populate auth info if subject is
readonly
Key: OAK-8801
URL: https://issues.apache.org/jira/browse/OAK-8801
Project: Jackrabbit Oak
Issue Type: Bug
Components: core, security
Reporter: Angela Schreiber
Assignee: Angela Schreiber
while testing a potential fix for OAK-8710, i noticed that
{{LoginModuleImpl.commit()}} will only populate the {{AuthInfo}} with
principals if the subject is not read-only. it seems to me that the
{{AuthInfo}} should be populated with principals from subject and from lookup
irrespective of the read-only nature of the subject. the only difference: if
the subject is read-only additional principals and the auth-info will not be
appended to the subject.
i will fix that independently of OAK-8710 in order to keep the already
extensive patch for OAK-8710 as limited as possible.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
