Bug 1288668

Summary: [GSS](6.4.z) The root cause of login module failures gets lost when multiple login modules are stacked
Product: [JBoss] JBoss Enterprise Application Platform 6 Reporter: dhorton
Component: SecurityAssignee: Tomas Hofman <thofman>
Status: CLOSED CURRENTRELEASE QA Contact: Josef Cacek <jcacek>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 6.4.4CC: anmiller, bbaranow, bdawidow, bmaxwell, darran.lofthouse, ihradek, istudens, ppalaga, pskopek, thofman
Target Milestone: CR1   
Target Release: EAP 6.4.12   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2017-01-17 13:12:06 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1274287, 1375585, 1375727    

Description dhorton 2015-12-04 23:09:26 UTC 
Description of problem:
The root cause of login module failures gets lost when multiple login modules are stacked and the "flag" attribute is set to "optional".

When the login attempt fails (invalid bindCredential on the LdapExtLoginModule for example) the authentication request will continue to the next login module in the stack.  In this situation, the exceptions "cause" attribute is getting overwritten during the processing of the other login modules.  This results in the actual cause to get lost during processing.

This makes troubleshooting authentication failures difficult.
Comment 7 Mike McCune 2016-03-28 23:39:55 UTC 
This bug was accidentally moved from POST to MODIFIED via an error in automation, please see mmccune with any questions
Comment 8 JBoss JIRA Server 2016-05-23 08:04:43 UTC 
Tomas Hofman <thofman> updated the status of jira JBEAP-2817 to Coding In Progress
Comment 10 JBoss JIRA Server 2016-08-02 08:09:34 UTC 
Bartosz Baranowski <bbaranow> updated the status of jira JBEAP-2817 to Resolved
Comment 13 Ivo Hradek 2016-11-24 13:48:43 UTC 
Verified with EAP 6.4.12.CP.CR1;
Comment 14 Petr Penicka 2017-01-17 13:12:06 UTC 
Retroactively bulk-closing issues from released EAP 6.4 cummulative patches.