August 2014 - infinispan-issues - Jboss List Archives

[JBoss JIRA] (ISPN-4179) Add Filters that utilize indexless querying

by William Burns (JIRA)

[ https://issues.jboss.org/browse/ISPN-4179?page=com.atlassian.jira.plugin.... ] William Burns commented on ISPN-4179: ------------------------------------- Sure, [~anistor]. I was guessing we didn't want to expose the filters, but we can surely discuss it further. > Add Filters that utilize indexless querying > ------------------------------------------- > > Key: ISPN-4179 > URL: https://issues.jboss.org/browse/ISPN-4179 > Project: Infinispan > Issue Type: Feature Request > Security Level: Public(Everyone can see) > Components: Listeners > Reporter: William Burns > Assignee: William Burns > Fix For: 7.0.0.Final > > > We will need to add in a KeyValueFilter implementation on top of -- This message was sent by Atlassian JIRA (v6.3.1#6329)

11 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ISPN-4179) Add Filters that utilize indexless querying

by Adrian Nistor (JIRA)

[ https://issues.jboss.org/browse/ISPN-4179?page=com.atlassian.jira.plugin.... ] Adrian Nistor commented on ISPN-4179: ------------------------------------- [~william.burns] FilterAndConverter is currently internal to query module implementation. Since this is a feature request I assume we should still expose this to users somenow. I have the feeling there is something more to it. Let's chat tomorrow. > Add Filters that utilize indexless querying > ------------------------------------------- > > Key: ISPN-4179 > URL: https://issues.jboss.org/browse/ISPN-4179 > Project: Infinispan > Issue Type: Feature Request > Security Level: Public(Everyone can see) > Components: Listeners > Reporter: William Burns > Assignee: William Burns > Fix For: 7.0.0.Final > > > We will need to add in a KeyValueFilter implementation on top of -- This message was sent by Atlassian JIRA (v6.3.1#6329)

11 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ISPN-4105) Optimize Cluster Listener performance for Replicated Caches

by William Burns (JIRA)

[ https://issues.jboss.org/browse/ISPN-4105?page=com.atlassian.jira.plugin.... ] Work on ISPN-4105 started by William Burns. ------------------------------------------- > Optimize Cluster Listener performance for Replicated Caches > ----------------------------------------------------------- > > Key: ISPN-4105 > URL: https://issues.jboss.org/browse/ISPN-4105 > Project: Infinispan > Issue Type: Enhancement > Security Level: Public(Everyone can see) > Components: Listeners > Affects Versions: 7.0.0.Alpha1 > Reporter: William Burns > Assignee: William Burns > Fix For: 7.0.0.Final > > > Currently cluster listeners behave the same way for replicated caches as distributed caches. We should enhance this so the replicated cache only uses a local listener to improve write performance when they are installed. -- This message was sent by Atlassian JIRA (v6.3.1#6329)

11 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ISPN-3229) L1 cache entries should not be passivated

by William Burns (JIRA)

[ https://issues.jboss.org/browse/ISPN-3229?page=com.atlassian.jira.plugin.... ] William Burns updated ISPN-3229: -------------------------------- Status: Pull Request Sent (was: Coding In Progress) Git Pull Request: https://github.com/infinispan/infinispan/pull/2824 > L1 cache entries should not be passivated > ----------------------------------------- > > Key: ISPN-3229 > URL: https://issues.jboss.org/browse/ISPN-3229 > Project: Infinispan > Issue Type: Bug > Security Level: Public(Everyone can see) > Components: L1 > Affects Versions: 5.2.6.Final > Reporter: William Burns > Assignee: William Burns > Fix For: 7.0.0.Beta2 > > Attachments: DistSyncL1PassivationFuncTest.java > > > L1 entries are stored in the same data container as the real entries. These can be evicted which is fine, however we don't want them to be passivated as this could be costly to write/read from the cache store. We should either prevent L1 cache entries from being passivated or have an option to allow for it. > Currently L1 entries are not differentiated from other entries except through the fact that they are mortal, which is used for other operations as well, which means they would need a placeholder of some kind to tell the container this is a L1 entry. -- This message was sent by Atlassian JIRA (v6.3.1#6329)

11 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ISPN-4669) Loading LDAP roles fails when some principal hasn't LDAP record

by Vojtech Juranek (JIRA)

[ https://issues.jboss.org/browse/ISPN-4669?page=com.atlassian.jira.plugin.... ] Vojtech Juranek updated ISPN-4669: ---------------------------------- Status: Pull Request Sent (was: Open) Git Pull Request: https://github.com/infinispan/infinispan/pull/2823 > Loading LDAP roles fails when some principal hasn't LDAP record > --------------------------------------------------------------- > > Key: ISPN-4669 > URL: https://issues.jboss.org/browse/ISPN-4669 > Project: Infinispan > Issue Type: Bug > Security Level: Public(Everyone can see) > Components: Server > Reporter: Vojtech Juranek > Assignee: Tristan Tarrant > > In server mode, when loading the roles from LDAP (e.g. scenario GSSAPI authentization and authorization is delegate to LDAP), it fails with following exception when some principal (typically {{InetAddressPrincipal}}) hasn't a record in LDAP: > {noformat} > Caused by: java.lang.SecurityException: JDGS010022: Cannot retrieve authorization information for user admin(a)INFINISPAN.ORG > at org.infinispan.server.endpoint.subsystem.EndpointServerAuthenticationProvider$GSSAPIEndpointAuthorizingCallbackHandler.getSubjectUserInfo(EndpointServerAuthenticationProvider.java:96) [infinispan-server-endpoints-7.0.0-SNAPSHOT. > jar:7.0.0-SNAPSHOT] > at org.infinispan.server.hotrod.Decoder2x$.customReadHeader(Decoder2x.scala:238) [infinispan.jar:7.0.0-SNAPSHOT] > at org.infinispan.server.hotrod.HotRodDecoder.customDecodeHeader(HotRodDecoder.scala:152) [infinispan.jar:7.0.0-SNAPSHOT] > at org.infinispan.server.core.AbstractProtocolDecoder.decodeHeader(AbstractProtocolDecoder.scala:148) [infinispan.jar:7.0.0-SNAPSHOT] > at org.infinispan.server.core.AbstractProtocolDecoder.secureDecodeDispatch(AbstractProtocolDecoder.scala:96) [infinispan.jar:7.0.0-SNAPSHOT] > ... 14 more > Caused by: java.io.IOException: javax.naming.NamingException: JBAS015231: User '127.0.0.1' not found in directory. > at org.jboss.as.domain.management.security.LdapSubjectSupplementalService$LdapSubjectSupplemental.supplementSubject(LdapSubjectSupplementalService.java:171) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] > at org.jboss.as.domain.management.security.SecurityRealmService$1.createSubjectUserInfo(SecurityRealmService.java:200) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] > at org.infinispan.server.endpoint.subsystem.EndpointServerAuthenticationProvider$GSSAPIEndpointAuthorizingCallbackHandler.getSubjectUserInfo(EndpointServerAuthenticationProvider.java:94) [infinispan-server-endpoints-7.0.0-SNAPSHOT.jar:7.0.0-SNAPSHOT] > ... 18 more > Caused by: javax.naming.NamingException: JBAS015231: User '127.0.0.1' not found in directory. > at org.jboss.as.domain.management.security.LdapUserSearcherFactory$LdapUserSearcherImpl.search(LdapUserSearcherFactory.java:130) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] > at org.jboss.as.domain.management.security.LdapUserSearcherFactory$LdapUserSearcherImpl.search(LdapUserSearcherFactory.java:67) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] > at org.jboss.as.domain.management.security.LdapCacheService$NoCacheCache.search(LdapCacheService.java:223) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] > at org.jboss.as.domain.management.security.LdapSubjectSupplementalService$LdapSubjectSupplemental.loadGroups(LdapSubjectSupplementalService.java:184) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] > at org.jboss.as.domain.management.security.LdapSubjectSupplementalService$LdapSubjectSupplemental.supplementSubject(LdapSubjectSupplementalService.java:163) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] > ... 20 more > {noformat} -- This message was sent by Atlassian JIRA (v6.3.1#6329)

11 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ISPN-4667) Query DSL fails to load entity class in Wildfly

by Gustavo Fernandes (JIRA)

[ https://issues.jboss.org/browse/ISPN-4667?page=com.atlassian.jira.plugin.... ] Gustavo Fernandes updated ISPN-4667: ------------------------------------ Status: Pull Request Sent (was: Open) Git Pull Request: https://github.com/infinispan/infinispan/pull/2822 > Query DSL fails to load entity class in Wildfly > ----------------------------------------------- > > Key: ISPN-4667 > URL: https://issues.jboss.org/browse/ISPN-4667 > Project: Infinispan > Issue Type: Bug > Security Level: Public(Everyone can see) > Components: Embedded Querying > Affects Versions: 7.0.0.Beta1 > Reporter: Gustavo Fernandes > Assignee: Gustavo Fernandes > Fix For: 7.0.0.Beta2 > > > When using the as modules and an application that depends on those modules, the following code: > {code} > Cache cache = ... > Query query = Search.getQueryFactory(cache).from(Book.class).having("field").contains("value").toBuilder().build(); > List<Object> results = query.list(); > {code} > fails with > {code} > java.lang.IllegalStateException: Unknown entity name org.infinispan.test.integration.as.query.Book > at org.hibernate.hql.lucene.internal.ClassBasedLuceneQueryResolverDelegate.registerPersisterSpace(ClassBasedLuceneQueryResolverDelegate.java:104) > at org.hibernate.hql.ast.origin.hql.resolve.GeneratedHQLResolver.entityName(GeneratedHQLResolver.java:12729) > at org.hibernate.hql.ast.origin.hql.resolve.GeneratedHQLResolver.persisterSpaceRoot(GeneratedHQLResolver.java:3064) > at org.hibernate.hql.ast.origin.hql.resolve.GeneratedHQLResolver.persisterSpace(GeneratedHQLResolver.java:2956) > at org.hibernate.hql.ast.origin.hql.resolve.GeneratedHQLResolver.persisterSpaces(GeneratedHQLResolver.java:2893) > at org.hibernate.hql.ast.origin.hql.resolve.GeneratedHQLResolver.fromClause(GeneratedHQLResolver.java:2803) > at org.hibernate.hql.ast.origin.hql.resolve.GeneratedHQLResolver.selectFrom(GeneratedHQLResolver.java:2704) > at org.hibernate.hql.ast.origin.hql.resolve.GeneratedHQLResolver.querySpec(GeneratedHQLResolver.java:2182) > at org.hibernate.hql.ast.origin.hql.resolve.GeneratedHQLResolver.queryExpression(GeneratedHQLResolver.java:2106) > at org.hibernate.hql.ast.origin.hql.resolve.GeneratedHQLResolver.queryStatement(GeneratedHQLResolver.java:1745) > at org.hibernate.hql.ast.origin.hql.resolve.GeneratedHQLResolver.queryStatementSet(GeneratedHQLResolver.java:1658) > at org.hibernate.hql.ast.origin.hql.resolve.GeneratedHQLResolver.statement(GeneratedHQLResolver.java:654) > at org.hibernate.hql.ast.spi.QueryResolverProcessor.process(QueryResolverProcessor.java:52) > at org.hibernate.hql.QueryParser.parseQuery(QueryParser.java:82) > at org.infinispan.query.dsl.embedded.impl.EmbeddedLuceneQueryBuilder.build(EmbeddedLuceneQueryBuilder.java:43) > at org.infinispan.query.dsl.embedded.impl.EmbeddedLuceneQueryBuilder.build(EmbeddedLuceneQueryBuilder.java:19) > {code} -- This message was sent by Atlassian JIRA (v6.3.1#6329)

11 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ISPN-4656) Test for GSSAPI authentication and LDAP authorization

by RH Bugzilla Integration (JIRA)

[ https://issues.jboss.org/browse/ISPN-4656?page=com.atlassian.jira.plugin.... ] RH Bugzilla Integration commented on ISPN-4656: ----------------------------------------------- Vojtech Juranek <vjuranek(a)redhat.com> changed the Status of [bug 1130317|https://bugzilla.redhat.com/show_bug.cgi?id=1130317] from ON_QA to ASSIGNED > Test for GSSAPI authentication and LDAP authorization > ----------------------------------------------------- > > Key: ISPN-4656 > URL: https://issues.jboss.org/browse/ISPN-4656 > Project: Infinispan > Issue Type: Feature Request > Security Level: Public(Everyone can see) > Components: Test Suite - Server > Reporter: Vojtech Juranek > Assignee: Vojtech Juranek > > Implement a test which would verify client to server authentication over GSSAPI and client roles/authorization is loaded from LDAP server. -- This message was sent by Atlassian JIRA (v6.3.1#6329)

11 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ISPN-4669) Loading LDAP roles fails when some principal hasn't LDAP record

by RH Bugzilla Integration (JIRA)

[ https://issues.jboss.org/browse/ISPN-4669?page=com.atlassian.jira.plugin.... ] RH Bugzilla Integration updated ISPN-4669: ------------------------------------------ Bugzilla Update: Perform Bugzilla References: https://bugzilla.redhat.com/show_bug.cgi?id=1134085 > Loading LDAP roles fails when some principal hasn't LDAP record > --------------------------------------------------------------- > > Key: ISPN-4669 > URL: https://issues.jboss.org/browse/ISPN-4669 > Project: Infinispan > Issue Type: Bug > Security Level: Public(Everyone can see) > Components: Server > Reporter: Vojtech Juranek > Assignee: Tristan Tarrant > > In server mode, when loading the roles from LDAP (e.g. scenario GSSAPI authentization and authorization is delegate to LDAP), it fails with following exception when some principal (typically {{InetAddressPrincipal}}) hasn't a record in LDAP: > {noformat} > Caused by: java.lang.SecurityException: JDGS010022: Cannot retrieve authorization information for user admin(a)INFINISPAN.ORG > at org.infinispan.server.endpoint.subsystem.EndpointServerAuthenticationProvider$GSSAPIEndpointAuthorizingCallbackHandler.getSubjectUserInfo(EndpointServerAuthenticationProvider.java:96) [infinispan-server-endpoints-7.0.0-SNAPSHOT. > jar:7.0.0-SNAPSHOT] > at org.infinispan.server.hotrod.Decoder2x$.customReadHeader(Decoder2x.scala:238) [infinispan.jar:7.0.0-SNAPSHOT] > at org.infinispan.server.hotrod.HotRodDecoder.customDecodeHeader(HotRodDecoder.scala:152) [infinispan.jar:7.0.0-SNAPSHOT] > at org.infinispan.server.core.AbstractProtocolDecoder.decodeHeader(AbstractProtocolDecoder.scala:148) [infinispan.jar:7.0.0-SNAPSHOT] > at org.infinispan.server.core.AbstractProtocolDecoder.secureDecodeDispatch(AbstractProtocolDecoder.scala:96) [infinispan.jar:7.0.0-SNAPSHOT] > ... 14 more > Caused by: java.io.IOException: javax.naming.NamingException: JBAS015231: User '127.0.0.1' not found in directory. > at org.jboss.as.domain.management.security.LdapSubjectSupplementalService$LdapSubjectSupplemental.supplementSubject(LdapSubjectSupplementalService.java:171) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] > at org.jboss.as.domain.management.security.SecurityRealmService$1.createSubjectUserInfo(SecurityRealmService.java:200) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] > at org.infinispan.server.endpoint.subsystem.EndpointServerAuthenticationProvider$GSSAPIEndpointAuthorizingCallbackHandler.getSubjectUserInfo(EndpointServerAuthenticationProvider.java:94) [infinispan-server-endpoints-7.0.0-SNAPSHOT.jar:7.0.0-SNAPSHOT] > ... 18 more > Caused by: javax.naming.NamingException: JBAS015231: User '127.0.0.1' not found in directory. > at org.jboss.as.domain.management.security.LdapUserSearcherFactory$LdapUserSearcherImpl.search(LdapUserSearcherFactory.java:130) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] > at org.jboss.as.domain.management.security.LdapUserSearcherFactory$LdapUserSearcherImpl.search(LdapUserSearcherFactory.java:67) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] > at org.jboss.as.domain.management.security.LdapCacheService$NoCacheCache.search(LdapCacheService.java:223) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] > at org.jboss.as.domain.management.security.LdapSubjectSupplementalService$LdapSubjectSupplemental.loadGroups(LdapSubjectSupplementalService.java:184) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] > at org.jboss.as.domain.management.security.LdapSubjectSupplementalService$LdapSubjectSupplemental.supplementSubject(LdapSubjectSupplementalService.java:163) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] > ... 20 more > {noformat} -- This message was sent by Atlassian JIRA (v6.3.1#6329)

11 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ISPN-4669) Loading LDAP roles fails when some principal hasn't LDAP record

by Vojtech Juranek (JIRA)

Vojtech Juranek created ISPN-4669: ------------------------------------- Summary: Loading LDAP roles fails when some principal hasn't LDAP record Key: ISPN-4669 URL: https://issues.jboss.org/browse/ISPN-4669 Project: Infinispan Issue Type: Bug Security Level: Public (Everyone can see) Components: Server Reporter: Vojtech Juranek Assignee: Tristan Tarrant In server mode, when loading the roles from LDAP (e.g. scenario GSSAPI authentization and authorization is delegate to LDAP), it fails with following exception when some principal (typically {{InetAddressPrincipal}}) hasn't a record in LDAP: {noformat} Caused by: java.lang.SecurityException: JDGS010022: Cannot retrieve authorization information for user admin(a)INFINISPAN.ORG at org.infinispan.server.endpoint.subsystem.EndpointServerAuthenticationProvider$GSSAPIEndpointAuthorizingCallbackHandler.getSubjectUserInfo(EndpointServerAuthenticationProvider.java:96) [infinispan-server-endpoints-7.0.0-SNAPSHOT. jar:7.0.0-SNAPSHOT] at org.infinispan.server.hotrod.Decoder2x$.customReadHeader(Decoder2x.scala:238) [infinispan.jar:7.0.0-SNAPSHOT] at org.infinispan.server.hotrod.HotRodDecoder.customDecodeHeader(HotRodDecoder.scala:152) [infinispan.jar:7.0.0-SNAPSHOT] at org.infinispan.server.core.AbstractProtocolDecoder.decodeHeader(AbstractProtocolDecoder.scala:148) [infinispan.jar:7.0.0-SNAPSHOT] at org.infinispan.server.core.AbstractProtocolDecoder.secureDecodeDispatch(AbstractProtocolDecoder.scala:96) [infinispan.jar:7.0.0-SNAPSHOT] ... 14 more Caused by: java.io.IOException: javax.naming.NamingException: JBAS015231: User '127.0.0.1' not found in directory. at org.jboss.as.domain.management.security.LdapSubjectSupplementalService$LdapSubjectSupplemental.supplementSubject(LdapSubjectSupplementalService.java:171) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] at org.jboss.as.domain.management.security.SecurityRealmService$1.createSubjectUserInfo(SecurityRealmService.java:200) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] at org.infinispan.server.endpoint.subsystem.EndpointServerAuthenticationProvider$GSSAPIEndpointAuthorizingCallbackHandler.getSubjectUserInfo(EndpointServerAuthenticationProvider.java:94) [infinispan-server-endpoints-7.0.0-SNAPSHOT.jar:7.0.0-SNAPSHOT] ... 18 more Caused by: javax.naming.NamingException: JBAS015231: User '127.0.0.1' not found in directory. at org.jboss.as.domain.management.security.LdapUserSearcherFactory$LdapUserSearcherImpl.search(LdapUserSearcherFactory.java:130) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] at org.jboss.as.domain.management.security.LdapUserSearcherFactory$LdapUserSearcherImpl.search(LdapUserSearcherFactory.java:67) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] at org.jboss.as.domain.management.security.LdapCacheService$NoCacheCache.search(LdapCacheService.java:223) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] at org.jboss.as.domain.management.security.LdapSubjectSupplementalService$LdapSubjectSupplemental.loadGroups(LdapSubjectSupplementalService.java:184) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] at org.jboss.as.domain.management.security.LdapSubjectSupplementalService$LdapSubjectSupplemental.supplementSubject(LdapSubjectSupplementalService.java:163) [wildfly-domain-management-8.1.0.Final.jar:8.1.0.Final] ... 20 more {noformat} -- This message was sent by Atlassian JIRA (v6.3.1#6329)

11 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ISPN-4639) IndexingConfigurationBuilder query module validation is wrong

by Pedro Ruivo (JIRA)

[ https://issues.jboss.org/browse/ISPN-4639?page=com.atlassian.jira.plugin.... ] Pedro Ruivo updated ISPN-4639: ------------------------------ Status: Resolved (was: Pull Request Sent) Fix Version/s: 7.0.0.Beta2 Resolution: Done > IndexingConfigurationBuilder query module validation is wrong > ------------------------------------------------------------- > > Key: ISPN-4639 > URL: https://issues.jboss.org/browse/ISPN-4639 > Project: Infinispan > Issue Type: Bug > Security Level: Public(Everyone can see) > Components: Configuration > Affects Versions: 7.0.0.Beta1 > Reporter: Paul Ferraro > Assignee: William Burns > Priority: Critical > Fix For: 7.0.0.Beta2 > > > The query module is ultimately loaded by the ComponentRegistry, which will load its modules via the classloader returned by GlobalConfiguration.classLoader(). However, the logic in IndexingConfigurationBuilder.validate(...) tests that the query module classes are accessible from the classloader that loaded the IndexingConfigurationBuilder itself. > In WildFly, to use querying, one would use the following configuration: > <cache-container module="org.infinispan.query"/> > Internally, this configures Infinispan's GlobalConfiguration with the classloader of the "org.infinispan.query" module. > However, the IndexingConfigurationBuilder class is contained in the "org.infinispan" - which does not depend on the "org.infinispan.query" module. Consequently, IndexingConfigurationBuilder validation fails, even though the module would have been successfully loaded at runtime. -- This message was sent by Atlassian JIRA (v6.3.1#6329)

11 years, 7 months

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

infinispan-issues August 2014