Uploaded image for project: 'Fedora Repository Project'
  1. Fedora Repository Project
  2. FCREPO-2961

Shiro explodes if user does not have fedoraUser or fedoraAdmin role

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: Fedora 5.0.0
    • Component/s: f4-auth
    • Labels:
      None
    • Roadmap Theme:
      Services: Authorization

      Description

      If your authentication principal does not have at least one of fedoraUser or fedoraAdmin roles the system tries to add an empty set of roles and Shiro explodes.

      Need a check for empty around this line.

      https://github.com/fcrepo4/fcrepo4/blob/fcrepo-5.0.0-RC-2/fcrepo-auth-common/src/main/java/org/fcrepo/auth/common/ServletContainerAuthenticatingRealm.java#L51

       

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                peichman-umd Peter Eichman
                Reporter:
                whikloj Jared Whiklo
                Reviewer:
                Jared Whiklo
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: