glassfish
  1. glassfish
  2. GLASSFISH-20451

Authenticated user principal is not cached in the web session after initial successful authentication by a JASPIC ServerAuthModule (SAM)

    Details

    • Type: Bug Bug
    • Status: Resolved
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 4.0_b86_RC2
    • Fix Version/s: 4.0
    • Component/s: security
    • Labels:
      None

      Description

      This is related to https://java.net/jira/browse/GLASSFISH-20317, which has more detail.
      First request to a protected resource gets authenticated successfully by the SAM.
      On the second request, the SAM tries to retrieve the user principal from request.getUserPrincipal() and gets null. However on the third request, request.getUserPrincipal() returns the correct principal in SAM's validateRequest() method!

        Activity

        quang.dang created issue -
        Shing Wai Chan made changes -
        Field Original Value New Value
        Assignee Shing Wai Chan [ swchan2 ] JeffTancill [ jefftancill ]
        Component/s security [ 10618 ]
        Component/s web_container [ 10622 ]
        JeffTancill made changes -
        Assignee JeffTancill [ jefftancill ] quang.dang [ quang.dang ]
        quang.dang made changes -
        Tags 4_0-review
        quang.dang made changes -
        Summary Authenticated user principal is not found in the web session(during second request) after initial successful authentication by a JASPIC ServerAuthModule (SAM) Authenticated user principal is not cached in the web session after initial successful authentication by a JASPIC ServerAuthModule (SAM)
        michael.y.chen made changes -
        Tags 4_0-review 4_0-approved
        quang.dang made changes -
        Status Open [ 1 ] Resolved [ 5 ]
        Resolution Fixed [ 1 ]

          People

          • Assignee:
            quang.dang
            Reporter:
            quang.dang
          • Votes:
            1 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: