January 2007 - jboss-jira - Jboss List Archives

[JBoss JIRA] Created: (JBREM-536) turn off host verification when doing push callback from server using same ssl config as server

by Tom Elrod (JIRA)

turn off host verification when doing push callback from server using same ssl config as server ----------------------------------------------------------------------------------------------- Key: JBREM-536 URL: http://jira.jboss.com/jira/browse/JBREM-536 Project: JBoss Remoting Issue Type: Task Security Level: Public (Everyone can see) Components: security Affects Versions: 2.0.0.Beta2 (Boon) Reporter: Tom Elrod Assigned To: Tom Elrod Fix For: 2.0.0.CR1 (Boon) Since will not have the ServerinvokerCallbackHandler pick up ssl config from the server when creating push callback client back to callback server, will need to turn off host verification as well as setting the client mode (which is already being done). -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

18 years, 7 months

2
4
0 / 0

[JBoss JIRA] Created: (JBREM-535) add config to force use of remote invoker instead of local

by Tom Elrod (JIRA)

add config to force use of remote invoker instead of local ---------------------------------------------------------- Key: JBREM-535 URL: http://jira.jboss.com/jira/browse/JBREM-535 Project: JBoss Remoting Issue Type: Task Security Level: Public (Everyone can see) Components: transport Affects Versions: 2.0.0.Beta2 (Boon) Reporter: Tom Elrod Assigned To: Tom Elrod Fix For: 2.0.0.CR1 (Boon) With the change to having InvokerLocator.BYVALUE config use local invoker and cloning of value instead of using remote invoker (see JBREM-320), now need a specific config for forcing use of remote invoker instead of local even when in same jvm. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

18 years, 7 months

2
2
0 / 0

[JBoss JIRA] Created: (SECURITY-16) Inject options on AuthorizationManagerService

by Anil Saldhana (JIRA)

Inject options on AuthorizationManagerService --------------------------------------------- Key: SECURITY-16 URL: http://jira.jboss.com/jira/browse/SECURITY-16 Project: JBoss Security Issue Type: Feature Request Security Level: Public (Everyone can see) Components: JBossSX Affects Versions: 2.0 Reporter: Anil Saldhana Assigned To: Anil Saldhana Fix For: 2.0 AuthorizationManagerService can have an injection of options that can then be passed on to the various pluggable Authorization Managers. Each of the Authorization Managers can have an optional setOptions method. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

18 years, 7 months

2
2
0 / 0

[JBoss JIRA] Created: (JBAS-3445) Testcase for UTF-8 support with FORM Authentication

by Anil Saldhana (JIRA)

Testcase for UTF-8 support with FORM Authentication --------------------------------------------------- Key: JBAS-3445 URL: http://jira.jboss.com/jira/browse/JBAS-3445 Project: JBoss Application Server Issue Type: Feature Request Security Level: Public (Everyone can see) Components: Security Affects Versions: JBossAS-4.0.4.GA Reporter: Anil Saldhana Assigned To: Anil Saldhana Fix For: JBossAS-4.0.6.CR1 User says: ======================================================== I have run into as well using JBoss 4.0.3SP1 (and 4.0.4GA). In my Web Applications, I can login with English usernames and passwords just fine. But when I try to login with a Russian or Chineese username, the login always fails. >From the tracing I've done, it seems the username is getting converted to ISO-8859-1, and that's why it's failing. I've done all the "standard" things to make our pages UTF-8, and this does work on every page except the login page. Something about "j_security_check" is ignoring UTF-8 and forcing a conversion to "ISO-8859-1". ========================================================= -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

18 years, 7 months

4
3
0 / 0

[JBoss JIRA] Created: (JBAS-3400) JaasSecurityManagerService can show security provider/JCA algorithm information

by Anil Saldhana (JIRA)

JaasSecurityManagerService can show security provider/JCA algorithm information ------------------------------------------------------------------------------- Key: JBAS-3400 URL: http://jira.jboss.com/jira/browse/JBAS-3400 Project: JBoss Application Server Issue Type: Feature Request Security Level: Public (Everyone can see) Components: Security Affects Versions: JBossAS-4.0.4.GA Reporter: Anil Saldhana Assigned To: Sohil Shah Priority: Optional Fix For: JBossAS-5.0.0.Beta, JBossAS-4.0.5.CR1, JBossAS-3.2.8.SP2 It may be useful to determine the security providers and the various JCA algorithms installed in the JDK. So, add two methods to the JaasSecurityManagerService as follows: - showProviders() - getAlgorithm(String serviceName) If the serviceName is null, show all the possible JCA service names. Here is a partial tested code, that you may want to adapt: ====================================================================================== import java.security.*; import java.util.*; public class A { public static void main(String[] args) { Provider[] providers = Security.getProviders(); for(int i = 0; i < providers.length; i++) { System.out.println("Provider="+providers[i].toString()); } System.out.println("Printing JCA Algorithm Information"); printJCAAlgorithm("Cipher"); printJCAAlgorithm("Signature"); printJCAAlgorithm("KeyFactory"); printJCAAlgorithm("SecretKeyFactory"); printJCAAlgorithm("AlgorithmParameters"); printJCAAlgorithm("MessageDigest"); printJCAAlgorithm("Mac"); } private static void printJCAAlgorithm(String sName) { System.out.println("Printing "+sName); Set md2 = Security.getAlgorithms(sName); System.out.println(sName + " set length="+md2.size()); Iterator md2iter = md2.iterator(); while(md2iter.hasNext()) { System.out.println(md2iter.next().toString()); } } } ==================================================================================== The output is: asaldhana~/testSecurity>java -cp . -Djava.security.manager A Provider=SUN version 1.5 Provider=SunRsaSign version 1.5 Provider=SunJSSE version 1.5 Provider=SunJCE version 1.5 Provider=SunJGSS version 1.0 Provider=SunSASL version 1.5 Printing JCA Algorithm Information Printing Cipher Cipher set length=13 ARCFOUR PBEWITHSHA1ANDDESEDE DESEDEWRAP PBEWITHMD5ANDTRIPLEDES DESEDE RSA AESWRAP AES PBEWITHMD5ANDDES BLOWFISH DES RC2 PBEWITHSHA1ANDRC2_40 Printing Signature Signature set length=9 SHA256WITHRSA NONEWITHDSA .... Make the changes in HEAD. I will port it to Branch_4_0 and Branch_3_2 -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

18 years, 7 months

5
13
0 / 0

[JBoss JIRA] Created: (JBAS-3613) failing test in org.jboss.test.iiop.test.ParameterPassingStressTestCase

by Dimitris Andreadis (JIRA)

failing test in org.jboss.test.iiop.test.ParameterPassingStressTestCase ----------------------------------------------------------------------- Key: JBAS-3613 URL: http://jira.jboss.com/jira/browse/JBAS-3613 Project: JBoss Application Server Issue Type: Sub-task Security Level: Public (Everyone can see) Components: IIOP service, Test Suite Environment: Java Version 1.5.0_05 Java Vendor Sun Microsystems Inc. Java VM Name Java HotSpot(TM) Server VM Java VM Version 1.5.0_05-b05 Java VM Info mixed mode OS Name Linux OS Version 2.6.9-34.0.2.ELsmp OS Arch i386 Reporter: Dimitris Andreadis Assigned To: Francisco Reverbel Fix For: JBossAS-4.0.5.GA test_getException Error Invalid indirection to offset 1704 java.io.IOException: Invalid indirection to offset 1704 at com.sun.corba.se.impl.io.IIOPInputStream$ActiveRecursionManager.getObject(IIOPInputStream.java:2684) at com.sun.corba.se.impl.io.IIOPInputStream.inputClassFields(IIOPInputStream.java:2218) at com.sun.corba.se.impl.io.IIOPInputStream.inputObject(IIOPInputStream.java:1221) at com.sun.corba.se.impl.io.IIOPInputStream.simpleReadObject(IIOPInputStream.java:400) at com.sun.corba.se.impl.io.ValueHandlerImpl.readValueInternal(ValueHandlerImpl.java:327) at com.sun.corba.se.impl.io.ValueHandlerImpl.readValue(ValueHandlerImpl.java:293) at org.jacorb.util.ValueHandler.readValue(ValueHandler.java:25) at org.jacorb.orb.CDRInputStream.read_untyped_value(CDRInputStream.java:2695) at org.jacorb.orb.CDRInputStream.read_typed_value(CDRInputStream.java:2753) at org.jacorb.orb.CDRInputStream.read_value(CDRInputStream.java:2438) at com.sun.corba.se.impl.io.ValueHandlerImpl.read_Array(ValueHandlerImpl.java:756) at com.sun.corba.se.impl.io.ValueHandlerImpl.readValueInternal(ValueHandlerImpl.java:325) at com.sun.corba.se.impl.io.ValueHandlerImpl.readValue(ValueHandlerImpl.java:293) at org.jacorb.util.ValueHandler.readValue(ValueHandler.java:25) at org.jacorb.orb.CDRInputStream.read_untyped_value(CDRInputStream.java:2695) at org.jacorb.orb.CDRInputStream.read_typed_value(CDRInputStream.java:2753) at org.jacorb.orb.CDRInputStream.read_value(CDRInputStream.java:2438) at com.sun.corba.se.impl.io.IIOPInputStream.inputObjectField(IIOPInputStream.java:1989) at com.sun.corba.se.impl.io.IIOPInputStream.inputClassFields(IIOPInputStream.java:2213) at com.sun.corba.se.impl.io.IIOPInputStream.inputObject(IIOPInputStream.java:1221) at com.sun.corba.se.impl.io.IIOPInputStream.simpleReadObject(IIOPInputStream.java:400) at com.sun.corba.se.impl.io.ValueHandlerImpl.readValueInternal(ValueHandlerImpl.java:327) at com.sun.corba.se.impl.io.ValueHandlerImpl.readValue(ValueHandlerImpl.java:293) at org.jacorb.util.ValueHandler.readValue(ValueHandler.java:25) at org.jacorb.orb.CDRInputStream.read_untyped_value(CDRInputStream.java:2695) at org.jacorb.orb.CDRInputStream.read_typed_value(CDRInputStream.java:2753) at org.jacorb.orb.CDRInputStream.read_value(CDRInputStream.java:2310) at org.jacorb.orb.Any.read_value(Any.java:816) at org.jacorb.orb.CDRInputStream.read_any(CDRInputStream.java:673) at com.sun.corba.se.impl.javax.rmi.CORBA.Util.readAny(Util.java:401) at javax.rmi.CORBA.Util.readAny(Util.java:92) at org.jboss.iiop.rmi.marshal.CDRStream$ObjectReader.read(CDRStream.java:618) at org.jboss.iiop.rmi.marshal.strategy.StubStrategy.readRetval(StubStrategy.java:226) at org.jboss.proxy.ejb.DynamicIIOPStub.invoke(DynamicIIOPStub.java:128) at org.jboss.test.iiop.interfaces._StatelessSession_Stub.getException(Unknown Source) at org.jboss.test.iiop.test.ParameterPassingStressTestCase.test_getException(ParameterPassingStressTestCase.java:355) at junit.extensions.TestDecorator.basicRun(TestDecorator.java:22) at junit.extensions.TestSetup$1.protect(TestSetup.java:19) at junit.extensions.TestSetup.run(TestSetup.java:23) -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

18 years, 7 months

4
21
0 / 0

[JBoss JIRA] Created: (JBPORTAL-1167) Improve error handling in WSRP to be more informative

by Chris Laprun (JIRA)

Improve error handling in WSRP to be more informative ----------------------------------------------------- Key: JBPORTAL-1167 URL: http://jira.jboss.com/jira/browse/JBPORTAL-1167 Project: JBoss Portal Issue Type: Feature Request Security Level: Public (Everyone can see) Components: Portal WSRP Affects Versions: 2.4.1 Final, 2.6.DR1 Reporter: Chris Laprun Assigned To: Chris Laprun Fix For: 2.6 Final -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

18 years, 7 months

4
7
0 / 0

[JBoss JIRA] Created: (EJBTHREE-689) support XMBean @Service beans

by William DeCoste (JIRA)

support XMBean @Service beans ----------------------------- Key: EJBTHREE-689 URL: http://jira.jboss.com/jira/browse/EJBTHREE-689 Project: EJB 3.0 Issue Type: Feature Request Affects Versions: EJB 3.0 RC8 - FD Reporter: William DeCoste Assigned To: William DeCoste -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

18 years, 7 months

2
2
0 / 0

[JBoss JIRA] Created: (JBPORTAL-1101) Replace WSRPUtils.createOperationFailedFault by WSRPUtils.throwOperationFailedFault

by Chris Laprun (JIRA)

Replace WSRPUtils.createOperationFailedFault by WSRPUtils.throwOperationFailedFault ----------------------------------------------------------------------------------- Key: JBPORTAL-1101 URL: http://jira.jboss.com/jira/browse/JBPORTAL-1101 Project: JBoss Portal Issue Type: Task Security Level: Public (Everyone can see) Components: Portal WSRP Reporter: Chris Laprun Assigned To: Chris Laprun Priority: Minor Fix For: 2.6.Alpha1 so that we don't have to throw the newly created exception each time... -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

18 years, 7 months

3
5
0 / 0

[JBoss JIRA] Created: (JGRP-271) need to decuople test code from build process

by Nathan Egge (JIRA)

need to decuople test code from build process --------------------------------------------- Key: JGRP-271 URL: http://jira.jboss.com/jira/browse/JGRP-271 Project: JGroups Issue Type: Patch Environment: Gentoo Linux dev-java/jgroups-2.2.7-r2 Reporter: Nathan Egge Assigned To: Bela Ban Priority: Minor Attachments: jgroups-2.2.7-build.patch I recently made a patch to the build.xml for JGroups 2.2.7 so that the unittest code could be compiled separately from the core classes. This was done to remove the build time dependency on junit.jar. More information can be found here: http://bugs.gentoo.org/show_bug.cgi?id=143282 -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

18 years, 7 months

3
4
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira January 2007