java - 在 AccessDeniedException 上检测到 Jackrabbit 未关闭的 session ,但 session 为空

标签 java jcr jackrabbit

我正在使用 Jackrabbit 2.13.1。

为什么AccessDeniedException会导致 session 泄露?

        try {
            session = repository.login(creds); //here are creds for user without permissions, just for testing
        } catch (Throwable t) {
            if (session != null) {
                session.logout();
            }
            Throwables.propagateIfInstanceOf(t, javax.jcr.RepositoryException.class);
            throw Throwables.propagate(t);
        }

如预期的那样抛出 AccessDeniedException:

Caused by: javax.jcr.LoginException: Workspace access denied
    at org.apache.jackrabbit.core.RepositoryImpl.login(RepositoryImpl.java:1529)
    at org.apache.jackrabbit.commons.AbstractRepository.login(AbstractRepository.java:144)
    at ttt.createSession(RepositoryManager.java:132)
    ... 51 common frames omitted

Caused by: javax.jcr.AccessDeniedException: Not allowed to access Workspace default
    at org.apache.jackrabbit.core.security.DefaultAccessManager.init(DefaultAccessManager.java:159)
    at org.apache.jackrabbit.core.DefaultSecurityManager.getAccessManager(DefaultSecurityManager.java:280)
    at org.apache.jackrabbit.core.SessionImpl.createAccessManager(SessionImpl.java:356)
    at org.apache.jackrabbit.core.SessionImpl.<init>(SessionImpl.java:273)
    at org.apache.jackrabbit.core.SessionImpl.<init>(SessionImpl.java:239)
    at org.apache.jackrabbit.core.XASessionImpl.<init>(XASessionImpl.java:101)
    at org.apache.jackrabbit.core.RepositoryImpl.createSessionInstance(RepositoryImpl.java:1613)
    at org.apache.jackrabbit.core.RepositoryImpl.createSession(RepositoryImpl.java:956)
    at org.apache.jackrabbit.core.RepositoryImpl.login(RepositoryImpl.java:1501)

session 为空,因此我无法对其调用注销。但是未关闭的 session 检测到异常被抛出:

WARN  o.a.jackrabbit.core.SessionImpl - Unclosed session detected. The session was opened here: 
java.lang.Exception: Stack Trace
    at org.apache.jackrabbit.core.SessionImpl.<init>(SessionImpl.java:222)
    at org.apache.jackrabbit.core.SessionImpl.<init>(SessionImpl.java:239)
    at org.apache.jackrabbit.core.XASessionImpl.<init>(XASessionImpl.java:101)
    at org.apache.jackrabbit.core.RepositoryImpl.createSessionInstance(RepositoryImpl.java:1613)
    at org.apache.jackrabbit.core.RepositoryImpl.createSession(RepositoryImpl.java:956)
    at org.apache.jackrabbit.core.RepositoryImpl.login(RepositoryImpl.java:1501)
    at org.apache.jackrabbit.commons.AbstractRepository.login(AbstractRepository.java:144)
    at ttt.createSession(RepositoryManager.java:132)

最佳答案

很好,这听起来显然是一个错误,它仍然存在于 2.13.3 中,并且在 SessionImpl 的构造函数中抛出异常时发生,然后部分创建了 session ,但它仍然被认为是 Activity 的,并且即将被 GCed 的实时 session 被当前代码视为 session 泄漏,这就是您收到此警告的原因。

我刚刚为此 https://issues.apache.org/jira/browse/JCR-4033 创建了一张票

关于java - 在 AccessDeniedException 上检测到 Jackrabbit 未关闭的 session ,但 session 为空,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/39163571/

上一篇:java - JPA EmptyResultDataAccessException 处理

下一篇:java - 使用 Dropwizard 实现强参数

相关文章:

java - Spring MVC 中如何在页面提交时绑定(bind)对象属性?

java - sleep 时线程中断

apache - 无法初始化 JCR_MOCK 资源解析器工厂 - 吊索模拟

java - 获取子节点返回无法循环错误

liferay - 在集群环境中设置 Jackrabbit

java - XLSX 的 CellStyle 数据格式

java - 将字节数组转换为 OutputStream

content-management-system - OCM 还是 JCR 中的节点?

java - 自定义 JCR (Jackrabbit) 节点属性类型

lucene - JCR-SQL - 包含函数不会转义特殊字符?

©2024 IT工具网  联系我们