Issue Details (XML | Word | Printable)

Key: APF-682
Type: Improvement Improvement
Status: Resolved Resolved
Resolution: Fixed
Priority: Major Major
Assignee: Matt Raible
Reporter: Hiugong Gwok
Votes: 0
Watchers: 0
Operations

If you were logged in you would be able to see more operations.
AppFuse

BaseControllerTestCase hard-coded username "tomcat"

Created: 07/Mar/07 11:42 AM   Updated: 07/Mar/07 02:12 PM   Resolved: 07/Mar/07 02:09 PM
Component/s: Build, Test, or Deploy Process
Affects Version/s: 2.0-M4
Fix Version/s: 2.0-M4


 Description  « Hide
org.appfuse.webapp.controller.BaseControllerTestCase has username "tomcat" hard-coded, so when user modified the default username in sample-data.xml, this issue might cause test failed.

Sort Order: Ascending order - Click to sort in descending order
Matt Raible made changes - 07/Mar/07 11:54 AM
Field Original Value New Value
Fix Version/s 2.0-M4 [ 10130 ]
[ Permalink | « Hide ]
Matt Raible added a comment - 07/Mar/07 01:16 PM
Do you see any issues with removing the population of the protected "user" object altogether? This is left over from pre-Acegi days and pre "good security" as well - where we looked in the session for the user rather than using request.getRemoteUser().

2560 by  Matt Raible (6 files)
07/Mar/07 02:01 PM (41 months, 4 days ago)
Matt Raible made changes - 07/Mar/07 02:09 PM
Status Open [ 1 ] Resolved [ 5 ]
Resolution Fixed [ 1 ]
[ Permalink | « Hide ]
Matt Raible added a comment - 07/Mar/07 02:12 PM
I removed "user" in the Base*TestCase classes. Note that the following still exists in Tapestry's BasePageTestCase:

MockHttpServletRequest request = new MockHttpServletRequest();
request.setRemoteUser("tomcat");

We should probably change "tomcat/tomcat" to "user/user" and "mraible/tomcat" to be "admin/admin" - I think that would be more acceptable by users.
Atlassian JIRA (v4.0#466) | Report a problem | Request a feature | Contact administrators
Powered by a free Atlassian JIRA open source license for AppFuse. Try JIRA - bug tracking software for your team.