4:23 p.m.
BinarySecurityToken class hardwired to X.509 certificates
---------------------------------------------------------
Key: JBESB-2460
URL: https://jira.jboss.org/jira/browse/JBESB-2460
Project: JBoss ESB
Issue Type: Feature Request
Security Level: Public (Everyone can see)
Components: Security
Affects Versions: 4.5
Reporter: Rune Molin
In order to support WS Security Kerberos Token Profile at a later time, please make the
class org.jboss.soa.esb.services.security.auth.ws.BinarySecurityToken abstract. Currently
it is hardwired to only support X.509 Certificate Token Profile.
By making this class abstract sooner rather than later, users could implement Kerberos
Token Profile themselves, without having to duplicate too much code. This will of course
mean moving the existing certificate bound implementation into a new class,
CertificateSecurityToken perhaps
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
8:18 p.m.
New subject: [JBoss JIRA] (JBESB-2460) BinarySecurityToken class hardwired to X.509 certificates
[
https://issues.jboss.org/browse/JBESB-2460?page=com.atlassian.jira.plugin...
]
RH Bugzilla Integration updated JBESB-2460:
-------------------------------------------
Bugzilla References: https://bugzilla.redhat.com/show_bug.cgi?id=796991
BinarySecurityToken class hardwired to X.509 certificates
---------------------------------------------------------
Key: JBESB-2460
URL: https://issues.jboss.org/browse/JBESB-2460
Project: JBoss ESB
Issue Type: Feature Request
Security Level: Public(Everyone can see)
Components: Security
Affects Versions: 4.5
Reporter: Rune Molin
In order to support WS Security Kerberos Token Profile at a later time, please make the
class org.jboss.soa.esb.services.security.auth.ws.BinarySecurityToken abstract. Currently
it is hardwired to only support X.509 Certificate Token Profile.
By making this class abstract sooner rather than later, users could implement Kerberos
Token Profile themselves, without having to duplicate too much code. This will of course
mean moving the existing certificate bound implementation into a new class,
CertificateSecurityToken perhaps
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
8:18 p.m.
New subject: [JBoss JIRA] (JBESB-2460) BinarySecurityToken class hardwired to X.509 certificates
[
https://issues.jboss.org/browse/JBESB-2460?page=com.atlassian.jira.plugin...
]
RH Bugzilla Integration updated JBESB-2460:
-------------------------------------------
Bugzilla Update: Perform
BinarySecurityToken class hardwired to X.509 certificates
---------------------------------------------------------
Key: JBESB-2460
URL: https://issues.jboss.org/browse/JBESB-2460
Project: JBoss ESB
Issue Type: Feature Request
Security Level: Public(Everyone can see)
Components: Security
Affects Versions: 4.5
Reporter: Rune Molin
In order to support WS Security Kerberos Token Profile at a later time, please make the
class org.jboss.soa.esb.services.security.auth.ws.BinarySecurityToken abstract. Currently
it is hardwired to only support X.509 Certificate Token Profile.
By making this class abstract sooner rather than later, users could implement Kerberos
Token Profile themselves, without having to duplicate too much code. This will of course
mean moving the existing certificate bound implementation into a new class,
CertificateSecurityToken perhaps
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
8:22 p.m.
New subject: [JBoss JIRA] (JBESB-2460) BinarySecurityToken class hardwired to X.509 certificates
[
https://issues.jboss.org/browse/JBESB-2460?page=com.atlassian.jira.plugin...
]
Tom Cunningham closed JBESB-2460.
---------------------------------
BinarySecurityToken class hardwired to X.509 certificates
---------------------------------------------------------
Key: JBESB-2460
URL: https://issues.jboss.org/browse/JBESB-2460
Project: JBoss ESB
Issue Type: Feature Request
Security Level: Public(Everyone can see)
Components: Security
Affects Versions: 4.5
Reporter: Rune Molin
Assignee: Tom Cunningham
Fix For: 4.11
In order to support WS Security Kerberos Token Profile at a later time, please make the
class org.jboss.soa.esb.services.security.auth.ws.BinarySecurityToken abstract. Currently
it is hardwired to only support X.509 Certificate Token Profile.
By making this class abstract sooner rather than later, users could implement Kerberos
Token Profile themselves, without having to duplicate too much code. This will of course
mean moving the existing certificate bound implementation into a new class,
CertificateSecurityToken perhaps
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
8:22 p.m.
New subject: [JBoss JIRA] (JBESB-2460) BinarySecurityToken class hardwired to X.509 certificates
[
https://issues.jboss.org/browse/JBESB-2460?page=com.atlassian.jira.plugin...
]
Tom Cunningham resolved JBESB-2460.
-----------------------------------
Assignee: Tom Cunningham
Fix Version/s: 4.11
Resolution: Done
Make BinarySecurityToken an interface and make the implementation pluggable.
Adding a property to the security section of the jbossesb-properties.xml
containing your implementation class name makes it pluggable :
example :
<property
name="org.jboss.soa.esb.services.security.auth.ws.binarysecuritytoken.implementationClass"
value="org.jboss.soa.esb.services.security.auth.ws.BinarySecurityTokenImpl"
/>
BinarySecurityToken class hardwired to X.509 certificates
---------------------------------------------------------
Key: JBESB-2460
URL: https://issues.jboss.org/browse/JBESB-2460
Project: JBoss ESB
Issue Type: Feature Request
Security Level: Public(Everyone can see)
Components: Security
Affects Versions: 4.5
Reporter: Rune Molin
Assignee: Tom Cunningham
Fix For: 4.11
In order to support WS Security Kerberos Token Profile at a later time, please make the
class org.jboss.soa.esb.services.security.auth.ws.BinarySecurityToken abstract. Currently
it is hardwired to only support X.509 Certificate Token Profile.
By making this class abstract sooner rather than later, users could implement Kerberos
Token Profile themselves, without having to duplicate too much code. This will of course
mean moving the existing certificate bound implementation into a new class,
CertificateSecurityToken perhaps
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
4487
days inactive
5586
days old
4 comments
3 participants
participants (3)
-
RH Bugzilla Integration (JIRA) -
Rune Molin (JIRA)
-
Tom Cunningham (JIRA)