April 2017 - jboss-jira - Jboss List Archives

[JBoss JIRA] (WFCORE-2737) Elytron *-key-store should offer operations instead of alias resource

by Ondrej Kotek (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2737?page=com.atlassian.jira.plugi... ] Ondrej Kotek updated WFCORE-2737: --------------------------------- Description: Elytron {{*-key-store}} resources should offer operations instead of {{alias}} resource, at least {{ldap-key-store}} should. The reason is the same like for {{identity}} resource of Elytron modifiable realms, see [WFCORE-2691|https://issues.jboss.org/browse/WFCORE-2691?focusedCommentId=...] or related mailing thread on [wildfly-dev|http://lists.jboss.org/pipermail/wildfly-dev/2017-April/00589...]. Setting priority to blocker, like for WFCORE-2691. was: Elytron {{*-key-store}} resources should offer operations instead of {{alias}} resource, at least {{ldap-key-store}} should. The reason is the same like for {{identity}} resource of Elytron modifiable realms, see [WFCORE-2691|https://issues.jboss.org/browse/WFCORE-2691?focusedCommentId=...] or related mailing thread on [wildfly-dev|http://lists.jboss.org/pipermail/wildfly-dev/2017-April/00589...]. Setting priority to blocker, like for JBEAP-9547. The issue also brings some changes to EAP7-203 related tests. > Elytron *-key-store should offer operations instead of alias resource > --------------------------------------------------------------------- > > Key: WFCORE-2737 > URL: https://issues.jboss.org/browse/WFCORE-2737 > Project: WildFly Core > Issue Type: Bug > Components: Security > Affects Versions: 3.0.0.Beta16 > Reporter: Ondrej Kotek > Priority: Blocker > Labels: eap7.1-rfe-blocker > > Elytron {{*-key-store}} resources should offer operations instead of {{alias}} resource, at least {{ldap-key-store}} should. The reason is the same like for {{identity}} resource of Elytron modifiable realms, see [WFCORE-2691|https://issues.jboss.org/browse/WFCORE-2691?focusedCommentId=...] or related mailing thread on [wildfly-dev|http://lists.jboss.org/pipermail/wildfly-dev/2017-April/00589...]. > Setting priority to blocker, like for WFCORE-2691. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 7 months

1
0
0 / 0

[JBoss JIRA] (WFLY-8661) Transaction is marked disassociated from application thread when transaction manager reaper thread suspends transaction

by Scott Marlow (JIRA)

[ https://issues.jboss.org/browse/WFLY-8661?page=com.atlassian.jira.plugin.... ] Scott Marlow commented on WFLY-8661: ------------------------------------ [~dmlloyd] I tried the "counter" change last night but noticed that the notifyAssociationListeners() call only is happening from the TM reaper (timeout) thread but not the application thread. For the TM Reaper thread, we seem to reach the path of handling "whileSuspended/whileResumed" in org.wildfly.transaction.client.AbstractTransaction.performConsumer(ExceptionObjIntConsumer<T, E> consumer, T param1, int param2) but don't seem to reach that method at all in the application thread once the TM Reaper thread reaches AbstractTransaction.performConsumer. I expect that the application thread will disassociate itself from the transaction, at which time I will decrement the jpa container counter but the association listener is not getting called back it seems after the TM reaper thread cancels the transaction. Also, when the JPA container calls transaction.registerAssociationListener(), should I start the counter at one, or should I expect the association listener to be called immediately, to reflect the current active transaction that is already associated with the application thread? For now, I am starting the counter at one but we should agree on what should happen, so that the jpa counter starts at the correct value. > Transaction is marked disassociated from application thread when transaction manager reaper thread suspends transaction > ----------------------------------------------------------------------------------------------------------------------- > > Key: WFLY-8661 > URL: https://issues.jboss.org/browse/WFLY-8661 > Project: WildFly > Issue Type: Bug > Components: JPA / Hibernate > Affects Versions: 11.0.0.Alpha1 > Reporter: Scott Marlow > Assignee: Scott Marlow > > I created a pull request to enable the TxTimeoutTestCase ([JBEAP-10550] + [WFLY-5319]) which required a test change, however, the test is failing for me locally, due to org.wildfly.transaction.client.LocalTransaction.suspend() calling notifyAssociationListeners(false) in the TM reaper "tx timeout" thread, which is wrong, as the app client thread may still be associated with the same transaction. > [https://gist.github.com/scottmarlow/1ae4a4abe98851b3fe6b1e602ba273d7] shows another reaper thread association call being made, that shouldn't be. > I'm not sure of how the Narayana org.jboss.tm.listener.TransactionListenerRegistry SPI, internally ensured that the reaper thread didn't incorrectly perform association/disassociation but what we have now in WildFly (appears) to be different. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 7 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2730) empty target-name in constant-permission-mapper is not allowed

by Jan Kalina (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2730?page=com.atlassian.jira.plugi... ] Jan Kalina updated WFCORE-2730: ------------------------------- Description: I need to have an empty target-name because of the WebResourcePermission. But with unspecified target-name the primary underlying error message was: {code} | > ParseError at [row,col]:[367,5] | > Message: "WFLYCTL0113: '' is an invalid value for parameter | > target-name. Values must have a minimum length of 1 characters" {code} was: I need to have an empty target-name because of the WebResourcePermission. But with unspecified target-name the primary underlying error message was: | > ParseError at [row,col]:[367,5] | > Message: "WFLYCTL0113: '' is an invalid value for parameter | > target-name. Values must have a minimum length of 1 characters" > empty target-name in constant-permission-mapper is not allowed > -------------------------------------------------------------- > > Key: WFCORE-2730 > URL: https://issues.jboss.org/browse/WFCORE-2730 > Project: WildFly Core > Issue Type: Bug > Reporter: Eva Jarkovská > Assignee: Jan Kalina > > I need to have an empty target-name because of the WebResourcePermission. But with unspecified target-name the primary underlying error message was: > {code} > | > ParseError at [row,col]:[367,5] > | > Message: "WFLYCTL0113: '' is an invalid value for parameter > | > target-name. Values must have a minimum length of 1 characters" > {code} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 7 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2730) empty target-name in constant-permission-mapper is not allowed

by Jan Kalina (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2730?page=com.atlassian.jira.plugi... ] Jan Kalina updated WFCORE-2730: ------------------------------- Steps to Reproduce: {{<permission class-name="javax.security.jacc.WebResourcePermission" target-name="" action="GET"/>}} was: {{<permission class-name="javax.security.jacc.WebResourcePermission" target-name="" action="GET"/> }} > empty target-name in constant-permission-mapper is not allowed > -------------------------------------------------------------- > > Key: WFCORE-2730 > URL: https://issues.jboss.org/browse/WFCORE-2730 > Project: WildFly Core > Issue Type: Bug > Reporter: Eva Jarkovská > Assignee: Jan Kalina > > I need to have an empty target-name because of the WebResourcePermission. But with unspecified target-name the primary underlying error message was: > {code} > | > ParseError at [row,col]:[367,5] > | > Message: "WFLYCTL0113: '' is an invalid value for parameter > | > target-name. Values must have a minimum length of 1 characters" > {code} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ELY-53) GSSAPI Make Delegated Credential Available

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-53?page=com.atlassian.jira.plugin.sys... ] Darran Lofthouse updated ELY-53: -------------------------------- Fix Version/s: 1.1.0.Beta41 (was: 1.1.0.Beta39) > GSSAPI Make Delegated Credential Available > ------------------------------------------ > > Key: ELY-53 > URL: https://issues.jboss.org/browse/ELY-53 > Project: WildFly Elytron > Issue Type: Feature Request > Components: SASL > Reporter: Darran Lofthouse > Assignee: Darran Lofthouse > Fix For: 1.1.0.Beta41 > > > The server side of the mechanism can receive a delegated credential but there is no way to obtain it, we should provide a way for it to be obtained or provided. > _Note: This may be an Elytron integration point rather than something supported in the pure SASL mechanism._ -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ELY-262) The equivalent of wrap and unwrap for HTTP authentication mechanisms

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-262?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse updated ELY-262: --------------------------------- Fix Version/s: 1.1.0.Beta41 (was: 1.1.0.Beta39) > The equivalent of wrap and unwrap for HTTP authentication mechanisms > -------------------------------------------------------------------- > > Key: ELY-262 > URL: https://issues.jboss.org/browse/ELY-262 > Project: WildFly Elytron > Issue Type: Sub-task > Components: HTTP > Reporter: Darran Lofthouse > Fix For: 1.1.0.Beta41 > > -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ELY-261) Rework (and move) UsernamePasswordHashUtil

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-261?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse updated ELY-261: --------------------------------- Fix Version/s: 1.1.0.Beta41 (was: 1.1.0.Beta39) > Rework (and move) UsernamePasswordHashUtil > ------------------------------------------ > > Key: ELY-261 > URL: https://issues.jboss.org/browse/ELY-261 > Project: WildFly Elytron > Issue Type: Feature Request > Components: API / SPI, Passwords > Reporter: Darran Lofthouse > Fix For: 1.1.0.Beta41 > > > Firstly this class is not really SASL specific so should be in a general util package. > Secondly we now have password specs and a PasswordFactory - if this class still has a future then maybe it should be using those instead of it's own custom implementation. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ELY-154) Session based DigestCredential support

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-154?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse updated ELY-154: --------------------------------- Fix Version/s: 1.1.0.Beta41 (was: 1.1.0.Beta39) > Session based DigestCredential support > -------------------------------------- > > Key: ELY-154 > URL: https://issues.jboss.org/browse/ELY-154 > Project: WildFly Elytron > Issue Type: Sub-task > Components: Passwords > Reporter: Darran Lofthouse > Assignee: Darran Lofthouse > Fix For: 1.1.0.Beta41 > > > DigestCredential but where additional information is included such as nonce and cnonce to create a credential applicable to a session. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ELY-252) Take into account username after failed authentication for available mechs

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-252?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse updated ELY-252: --------------------------------- Fix Version/s: 1.1.0.Beta41 (was: 1.1.0.Beta39) > Take into account username after failed authentication for available mechs > -------------------------------------------------------------------------- > > Key: ELY-252 > URL: https://issues.jboss.org/browse/ELY-252 > Project: WildFly Elytron > Issue Type: Task > Components: SASL > Reporter: Darran Lofthouse > Fix For: 1.1.0.Beta41 > > > This is something we would need to be cautious about as it does risk revealing information to an attacker but after a files attempt we may have more information and be able to offer mechanisms based on this. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ELY-181) Review JACC in Servlet and EJB subsystems

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-181?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse updated ELY-181: --------------------------------- Fix Version/s: 1.1.0.Beta41 (was: 1.1.0.Beta39) > Review JACC in Servlet and EJB subsystems > ----------------------------------------- > > Key: ELY-181 > URL: https://issues.jboss.org/browse/ELY-181 > Project: WildFly Elytron > Issue Type: Sub-task > Components: API / SPI > Reporter: Pedro Igor > Assignee: Pedro Igor > Fix For: 1.1.0.Beta41 > > -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 7 months

1
0
0 / 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira April 2017