[ https://issues.apache.org/jira/browse/GERONIMO-3629?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12545188 ]
Vamsavardhana Reddy commented on GERONIMO-3629: ----------------------------------------------- Revision: 597886 http://svn.apache.org/viewvc?rev=597886&view=rev o logout() should remove credentials from the subject. o logout() should destroy credentials when the subject is read-only. o Changes to bring GeronimoPropertiesFileMappedPasswordCredentialLoginModule in line with http://java.sun.com/j2se/1.5.0/docs/guide/security/jaas/JAASLMDevGuide.html **: This commit can use a thorough review. > Review GeronimoPropertiesFileMappedPasswordCredentialLoginModule > ---------------------------------------------------------------- > > Key: GERONIMO-3629 > URL: https://issues.apache.org/jira/browse/GERONIMO-3629 > Project: Geronimo > Issue Type: Task > Security Level: public(Regular issues) > Components: security > Affects Versions: 2.0.x, 2.1 > Reporter: Vamsavardhana Reddy > Assignee: Vamsavardhana Reddy > Fix For: 2.0.x, 2.1 > > > Review GeronimoPropertiesFileMappedPasswordCredentialLoginModule for > potential violations and security risks. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.