Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 1.6.3.Final, 1.9.1.Final, 1.10.0.Final
Affects Version/s: None
Component/s: Undertow
Labels:
None

Release Note Text:
Undefined
Git Pull Request:
https://github.com/wildfly-security/elytron-web/pull/188, https://github.com/wildfly-security/elytron-web/pull/189, https://github.com/wildfly-security/elytron-web/pull/190, https://github.com/wildfly/wildfly/pull/14473

The login method assumes the httpAuthenticator will have already been set:

    @Override
    public boolean login(String username, String password) {
        if (httpAuthenticator == null) {
            log.trace("No HttpAuthenticator available for authentication.");
            return false;
        }

Instead we should adjust the code so the HttpAuthenticator will be created on demand for whichever method needs it first.

clones

WFLY-15009 Test Case for ELYWEB-133 - SecurityContextImpl.login incorrectly assumes authenticate would be called first.

Closed

is incorporated by

JBEAP-21737 [GSS](7.3.z) ELYWEB-133 - SecurityContextImpl.login incorrectly assumes authenticate would be called first.

Verified

JBEAP-21738 [GSS](7.4.z) ELYWEB-113 - SecurityContextImpl.login incorrectly assumes authenticate would be called first.

Verified

Assignee:: Darran Lofthouse

Reporter:: Darran Lofthouse

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2021/04/22 9:46 AM

Updated:: 2021/07/15 9:42 AM

Resolved:: 2021/05/19 4:20 PM