[security-dev] PicketLink IDM JPA Identity Store

Mon Oct 8 14:00:00 EDT 2012

IMO, both forms should be supported and left to the IDM consumer.

On 10/08/2012 12:40 PM, Bruno Oliveira wrote:
> Hi guys, which line should I look? From my perspective this line 
> https://github.com/picketlink/picketlink-idm-restored/blob/master/impl/src/test/java/org/picketlink/test/idm/internal/mgr/DefaultJPAIdentityManagerTestCase.java#L71 could 
> be refactored to 
> https://github.com/picketlink/picketlink-idm-restored/blob/6e63bc583fa2fab5976cac7449c39be447b03536/impl/src/test/java/org/picketlink/test/idm/internal/jpa/JPAUserTestCase.java#L94
>
> We're able to implement our own User entity, might be interesting to 
> add getPassword/setPassword methods, in this way this line 
> https://github.com/picketlink/picketlink-idm-restored/blob/master/impl/src/test/java/org/picketlink/test/idm/internal/mgr/DefaultJPAIdentityManagerTestCase.java#L121 won't 
> be needed. Just doing would be enough:
>
> public class MyCustomUser implements User {
> ….
> }
>
> myCustomUser.setPassword("…"); //think about the registration process, 
> we don't need DTOs just to pass passwords between entities.
>
> im.createUser(myCustomUser);
>
>
> About this line 
> https://github.com/picketlink/picketlink-idm-restored/blob/master/impl/src/test/java/org/picketlink/test/idm/internal/mgr/DefaultJPAIdentityManagerTestCase.java#L138 I'll 
> refactor it and send a PR.
>
> Currently we don't have groups on AeroGear, so our method is something 
> like:
>
> im.grantRole(adminRole, user, null);
>
> I'll refactor it to allow users without a group. Wdyt?
>
>
> -- 
> "The measure of a man is what he does with power" - Plato
> -
> @abstractj
> -
> Volenti Nihil Difficile
>
> On Monday, October 8, 2012 at 1:30 PM, Anil Saldhana wrote:
>
>> I want to offer continued discussion on the JPA implementation in the
>> IDM project.
>>
>> The work that Pedro did is restored here in the following workspace:
>> https://github.com/picketlink/picketlink-idm-restored
>>
>> A testcase that is useful for JPA implementation in IDM is:
>> https://github.com/picketlink/picketlink-idm-restored/blob/master/impl/src/test/java/org/picketlink/test/idm/internal/mgr/DefaultJPAIdentityManagerTestCase.java
>>
>> It is the exact mirror of the LDAP implementation:
>> https://github.com/picketlink/picketlink-idm-restored/blob/master/impl/src/test/java/org/picketlink/test/idm/internal/mgr/DefaultLDAPIdentityManagerTestCase.java
>>
>> These two implementations have very minimal user configuration.
>>
>> The challenge is when users bring in complex database schemas and LDAP
>> DITs into operation. But the goal of balancing complexity with
>> usability is a tough one.
>>
>> On 09/06/2012 10:13 AM, Anil Saldhana wrote:
>>> Similar challenges exist for LDAP bindings also, since user LDAP DITs
>>> may be different. But we have to balance complexity with usability. :)
>>>
>>> On 09/06/2012 07:37 AM, Pedro Igor Silva wrote:
>>>> Ok. I'll take a look how he took care of that.
>>>>
>>>> Regards.
>>>> Pedro Igor
>>>>
>>>> ----- Original Message -----
>>>> From: "Anil Saldhana" <Anil.Saldhana at redhat.com 
>>>> <mailto:Anil.Saldhana at redhat.com>>
>>>> To: security-dev at lists.jboss.org <mailto:security-dev at lists.jboss.org>
>>>> Sent: Wednesday, September 5, 2012 6:52:35 PM
>>>> Subject: [security-dev] PicketLink IDM JPA Identity Store
>>>>
>>>> Pedro,
>>>> Shane just referred me to the following:
>>>>
>>>> https://github.com/seam/security/blob/develop/impl/src/main/java/org/jboss/seam/security/management/picketlink/JpaIdentityStore.java
>>>>
>>>> Can you adapt your work to incorporate all facets of this Seam work?
>>>> Shane says users have varying db schema structures and the JPA
>>>> implementation in seam3 took care of the nuances.
>>>>
>>>> Regards,
>>>> Anil
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/security-dev/attachments/20121008/d6197e84/attachment-0001.html 