[zanata/zanata-server] b04d50: fix(ZNTA-1081): use @Synchronized for @SessionScop...

Wed May 18 01:31:15 UTC 2016

  Branch: refs/heads/release
  Home:   https://github.com/zanata/zanata-server
  Commit: b04d50e4cae5bc433da15e2dc8fd6e099d80622a
      https://github.com/zanata/zanata-server/commit/b04d50e4cae5bc433da15e2dc8fd6e099d80622a
  Author: Sean Flanigan <sflaniga at redhat.com>
  Date:   2016-05-18 (Wed, 18 May 2016)

  Changed paths:
    M zanata-model/src/main/java/org/zanata/model/validator/UniqueValidator.java
    M zanata-war/src/main/java/org/zanata/action/AccountMergeAction.java
    M zanata-war/src/main/java/org/zanata/action/LocaleSelectorAction.java
    M zanata-war/src/main/java/org/zanata/action/RoleSearch.java
    M zanata-war/src/main/java/org/zanata/action/UserSearch.java
    M zanata-war/src/main/java/org/zanata/jpa/EntityManagerProducer.java
    M zanata-war/src/main/java/org/zanata/seam/security/ZanataJpaIdentityStore.java
    M zanata-war/src/main/java/org/zanata/security/AuthenticatedAccountSessionScopeHolder.java
    M zanata-war/src/main/java/org/zanata/security/AuthenticationManager.java
    M zanata-war/src/main/java/org/zanata/security/SpNegoIdentity.java
    M zanata-war/src/main/java/org/zanata/security/UserRedirectBean.java
    M zanata-war/src/main/java/org/zanata/security/ZanataCredentials.java
    M zanata-war/src/main/java/org/zanata/security/ZanataIdentity.java
    M zanata-war/src/main/java/org/zanata/security/ZanataOpenId.java

  Log Message:
  -----------
  fix(ZNTA-1081): use @Synchronized for @SessionScoped beans (#1158)

- Use @Synchronized for @SessionScoped beans
- refactor: add ZanataCredentials.clearPassword()
- refactor: authenticateEvenIfDisabled to checkPasswordIgnoringActivation
- fix ClassCastException in UniqueValidator (@huangp)
- Add TODO to eliminate injecting hibernate session directly (@huangp)