djencks 2005/06/22 04:19:22
Modified: modules/core/src/java/org/openejb/corba/security/config/tss
TSSITTAnonymous.java TSSNULLTransportConfig.java
Log:
Improve the unprotected transport case
Revision Changes Path
1.3 +6 -2
openejb/modules/core/src/java/org/openejb/corba/security/config/tss/TSSITTAnonymous.java
Index: TSSITTAnonymous.java
===================================================================
RCS file:
/home/projects/openejb/scm/openejb/modules/core/src/java/org/openejb/corba/security/config/tss/TSSITTAnonymous.java,v
retrieving revision 1.2
retrieving revision 1.3
diff -u -r1.2 -r1.3
--- TSSITTAnonymous.java 17 Jun 2005 07:25:10 -0000 1.2
+++ TSSITTAnonymous.java 22 Jun 2005 08:19:20 -0000 1.3
@@ -61,6 +61,9 @@
public static final String OID = "";
+ public TSSITTAnonymous() {
+ }
+
public short getType() {
return ITTAnonymous.value;
}
@@ -70,7 +73,8 @@
}
public Subject check(IdentityToken identityToken) throws SASException {
- //TODO figure out if this is correct
+ //TODO this is wrong. The anonymous identity token should force the
default subject/principal since
+ //TODO the presence of an identity token is an identity assertion.
return null;
}
}
1.5 +8 -2
openejb/modules/core/src/java/org/openejb/corba/security/config/tss/TSSNULLTransportConfig.java
Index: TSSNULLTransportConfig.java
===================================================================
RCS file:
/home/projects/openejb/scm/openejb/modules/core/src/java/org/openejb/corba/security/config/tss/TSSNULLTransportConfig.java,v
retrieving revision 1.4
retrieving revision 1.5
diff -u -r1.4 -r1.5
--- TSSNULLTransportConfig.java 28 Mar 2005 21:00:19 -0000 1.4
+++ TSSNULLTransportConfig.java 22 Jun 2005 08:19:21 -0000 1.5
@@ -82,7 +82,13 @@
return result;
}
+ /**
+ * Returns null subject, since the transport layer can not establish the
subject.
+ * @param session
+ * @return
+ * @throws SASException
+ */
public Subject check(SSLSession session) throws SASException {
- return new Subject();
+ return null;
}
}
