Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-981

@RunAs/@RunAsPrincipal are ignored for @Startup/@Singleton bean

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Done
    • Affects Version/s: None
    • Fix Version/s: 8.0.0.CR1
    • Component/s: EJB
    • Labels:
      None

      Description

      The @RunAs/@RunAsPrincipal annotations get ignored when used on a singleton
      bean that is annotated with @Startup. This means the the singleton bean
      is not able to call protected EJBs.

      If the protected EJB is annotated with @PermitAll, then the
      singleton is able to invoke the method because the
      AuthorizationInterceptor create an "anonymous" user that is treated as
      authenticated. However, the @RunAsPrincipal is ignored as the
      getCallerPrincipal() returns anonymous instead of the @RunAsPrincipal.

      I dug around in the code and it looks like the @RunAs/@RunAsPrincipal
      annotations are getting handled correctly during deployment:

      Step completed: "thread=MSC service thread 1-3", org.jboss.as.ejb3.deployment.processors.merging.RunAsMergingProcessor.handleDeploymentDescriptor(), line=126 bci=249

      MSC service thread 1-3[1] print componentConfiguration.getRunAs()
      componentConfiguration.getRunAs() = "JBossAdmin"
      MSC service thread 1-3[1] print componentConfiguration.getRunAsPrincipal()
      componentConfiguration.getRunAsPrincipal() = "fred"

      However, by the time the SecurityContextInterceptor is called, the
      runAs/runAsPrincipal settings are null.

        Gliffy Diagrams

          Attachments

            Issue Links

            relates to

            Bug - A problem which impairs or prevents the functions of the product. WFLY-9039 EJB with Elytron propagate identity even when it should not

            • Blocker - An issue (bug, feature, task) that blocks development and/or testing work, production could not run. An upcoming version that is affected by this issue cannot be released until it's addressed.
            • Closed

            Bug - A problem which impairs or prevents the functions of the product. JBEAP-14307 [GSS](7.1.z) @RunAs/@RunAsPrincipal are ignored for @Startup/@Singleton bean

            • Major - A request that should be considered seriously but is not a show stopper.
            • Closed

              Activity

                People

                • Assignee:
                  ehugonnet ehsavoie Hugonnet
                  Reporter:
                  dehort Derek Horton
                • Votes:
                  1 Vote for this issue
                  Watchers:
                  6 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: