Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: None
Affects Version/s: None
Component/s: Security
Labels:
None

Steps to Reproduce:

Hide

Please refer to linked BZ.

Show
Please refer to linked BZ.
Git Pull Request:
https://github.com/wildfly/wildfly/pull/10829
Bugzilla References:
https://bugzilla.redhat.com/show_bug.cgi?id=1352418

Web service with STS (Picketlink) returns wrong subject with PolicyContext("javax.security.auth.subject.container").
It seems that configured login modules are not called since SecurityContext was created by SAML2Handler for the same security domain and are skipped because of ~~WFLY-4625~~.

Reproducer is attached in BZ-1352418.

blocks

PLINK-771 SAML2STSLoginModule cannot be configured with module options instead of configFile

Open

causes

JBEAP-11601 [GSS](7.1.z) The fix for WFLY-4625 breaks PolicyContext("javax.security.auth.subject.container") in CXF web service with STS

Closed

is cloned by

JBEAP-11601 [GSS](7.1.z) The fix for WFLY-4625 breaks PolicyContext("javax.security.auth.subject.container") in CXF web service with STS

Closed

relates to

JBEAP-11602 (7.0.z) The fix for WFLY-4625 breaks PolicyContext("javax.security.auth.subject.container") in CXF web service with STS

Closed

JBEAP-13887 (7.2.0) The fix for WFLY-4625 breaks PolicyContext("javax.security.auth.subject.container") in CXF web service with STS

Closed

Assignee:: Petr Jurak (Inactive)

Reporter:: Petr Jurak (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2017/06/16 3:27 AM

Updated:: 2021/10/24 5:58 AM

Resolved:: 2018/04/03 10:54 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates

Hide