Menu
▾
▴
Re: [Exist-development] [Exist-commits] SF.net SVN: exist:[15778] trunk/eXist/src/org/exist/security/internal/ SecurityManagerImpl.java
|
From: Adam R. <ad...@ex...> - 2012-02-01 23:41:09
|
I really feel that session management should NOT be in the SecurityManager - concerns are being muddied. The SessionManager should be a seperate layer above and subject to the SecurityManager. On 1 February 2012 17:46, <sha...@us...> wrote: > Revision: 15778 > http://exist.svn.sourceforge.net/exist/?rev=15778&view=rev > Author: shabanovd > Date: 2012-02-01 17:46:34 +0000 (Wed, 01 Feb 2012) > Log Message: > ----------- > [ignore] check 'static' SYSTEM & GUEST sessions on jsession authentication request > > Modified Paths: > -------------- > trunk/eXist/src/org/exist/security/internal/SecurityManagerImpl.java > > Modified: trunk/eXist/src/org/exist/security/internal/SecurityManagerImpl.java > =================================================================== > --- trunk/eXist/src/org/exist/security/internal/SecurityManagerImpl.java 2012-02-01 00:20:49 UTC (rev 15777) > +++ trunk/eXist/src/org/exist/security/internal/SecurityManagerImpl.java 2012-02-01 17:46:34 UTC (rev 15778) > @@ -419,7 +419,13 @@ > LOG.debug("Authentication try for '"+username+"'."); > > if("jsessionid".equals(username)) { > + > + if (getSystemSubject().getSessionId().equals(credentials)) > + return getSystemSubject(); > > + if (getGuestSubject().getSessionId().equals(credentials)) > + return getGuestSubject(); > + > Subject subject = sessions.read(new SessionDbRead<Subject>(){ > @Override > public Subject execute(final Map<String, Session> db) { > > This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site. > > > ------------------------------------------------------------------------------ > Keep Your Developer Skills Current with LearnDevNow! > The most comprehensive online learning library for Microsoft developers > is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, > Metro Style Apps, more. Free future releases when you subscribe now! > http://p.sf.net/sfu/learndevnow-d2d > _______________________________________________ > Exist-commits mailing list > Exi...@li... > https://lists.sourceforge.net/lists/listinfo/exist-commits -- Adam Retter eXist Developer { United Kingdom } ad...@ex... irc://irc.freenode.net/existdb |
