September 2009 - jboss-jira - Jboss List Archives

[JBoss JIRA] Created: (SECURITY-436) Synchronise Library Versions with EAP 5

by Darran Lofthouse (JIRA)

Synchronise Library Versions with EAP 5 --------------------------------------- Key: SECURITY-436 URL: https://jira.jboss.org/jira/browse/SECURITY-436 Project: JBoss Security and Identity Management Issue Type: Task Security Level: Public (Everyone can see) Components: Negotiation Reporter: Darran Lofthouse Assignee: Darran Lofthouse Fix For: Negotiation_2.0.3.SP2 -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 8 months

1
1
0 / 0

[JBoss JIRA] Commented: (JGRP-1037) Ergonomics: size thread pools dynamically

by Bela Ban (JIRA)

[ https://jira.jboss.org/jira/browse/JGRP-1037?page=com.atlassian.jira.plug... ] Bela Ban commented on JGRP-1037: -------------------------------- ConcurrentHashMap initial size, load factor and concurrency level should also be set dynamically, e.g. based on the cluster size > Ergonomics: size thread pools dynamically > ----------------------------------------- > > Key: JGRP-1037 > URL: https://jira.jboss.org/jira/browse/JGRP-1037 > Project: JGroups > Issue Type: Feature Request > Reporter: Bela Ban > Assignee: Bela Ban > Fix For: 2.9 > > > Ergonomics are a step towards less configuration and more dynamic setting of values. Example: a thread pool's min and max sizes can be dynamically changed, based on observations. When we have a min size of 10, but the thread pool is always 75, then we should set the min size to 75 and possibly change the idle time too. > This is just a first step towards ergonomics and needs to be expanded on in 3.x releases -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 8 months

1
0
0 / 0

[JBoss JIRA] Updated: (JBWEB-3) Using JAAS to affect forwarded web requests

by Remy Maucherat (JIRA)

[ https://jira.jboss.org/jira/browse/JBWEB-3?page=com.atlassian.jira.plugin... ] Remy Maucherat updated JBWEB-3: ------------------------------- Fix Version/s: JBossWeb-2.1.5.GA (was: JBossWeb-2.1.4.GA) > Using JAAS to affect forwarded web requests > ------------------------------------------- > > Key: JBWEB-3 > URL: https://jira.jboss.org/jira/browse/JBWEB-3 > Project: JBoss Web > Issue Type: Feature Request > Security Level: Public(Everyone can see) > Components: Core > Reporter: Scott M Stark > Assignee: Remy Maucherat > Priority: Minor > Fix For: JBossWeb-2.1.5.GA > > > As described for the following case: > http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3857340 > users commonly seem to want to be able to affect the web container security context through JAAS login and/or Subject.doAs to set/change the security context for subsequent web requests. We need to look into whether this can be supported. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 8 months

1
0
0 / 0

[JBoss JIRA] Updated: (JBWEB-19) Make isUserInRole() and getUserPrincipal() available on unsecured pages

by Remy Maucherat (JIRA)

[ https://jira.jboss.org/jira/browse/JBWEB-19?page=com.atlassian.jira.plugi... ] Remy Maucherat updated JBWEB-19: -------------------------------- Fix Version/s: JBossWeb-2.1.5.GA (was: JBossWeb-2.1.4.GA) > Make isUserInRole() and getUserPrincipal() available on unsecured pages > ----------------------------------------------------------------------- > > Key: JBWEB-19 > URL: https://jira.jboss.org/jira/browse/JBWEB-19 > Project: JBoss Web > Issue Type: Feature Request > Security Level: Public(Everyone can see) > Components: Core > Environment: Any > Reporter: Jeff Schnitzer > Assignee: Remy Maucherat > Fix For: JBossWeb-2.1.5.GA > > > Currently getUserPrincipal() returns null and ServletRequest.isUserInRole() always returns false on unsecured pages, even after the user has been authenticated. > It would be much more useful if these always returned proper values. This confusion comes up on the JAAS forums frequently. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 8 months

1
0
0 / 0

[JBoss JIRA] Created: (EJBTHREE-1915) Update plugin to as-int 1.1.16 snapshots

by jaikiran pai (JIRA)

Update plugin to as-int 1.1.16 snapshots ---------------------------------------- Key: EJBTHREE-1915 URL: https://jira.jboss.org/jira/browse/EJBTHREE-1915 Project: EJB 3.0 Issue Type: Task Reporter: jaikiran pai Assignee: jaikiran pai Fix For: Plugin 1.0.15 Move to as-int 1.1.16 SNAPSHOT -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 8 months

1
1
0 / 0

[JBoss JIRA] Created: (GPD-361) analyse impact of jpdl changes on gpd

by Tom Baeyens (JIRA)

analyse impact of jpdl changes on gpd ------------------------------------- Key: GPD-361 URL: https://jira.jboss.org/jira/browse/GPD-361 Project: JBoss jBPM GPD Issue Type: Task Reporter: Tom Baeyens Assignee: Koen Aers Fix For: jBPM jPDL Designer 4.1 what type of changes can we have in jpdl that affect the gpd ? how will gpd deal with these changes ? -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 8 months

2
3
0 / 0

[JBoss JIRA] Created: (JBPORTAL-2453) additional parameters for gadgets are lost when the gadgets are displayed

by Toshiya Kobayashi (JIRA)

additional parameters for gadgets are lost when the gadgets are displayed ------------------------------------------------------------------------- Key: JBPORTAL-2453 URL: https://jira.jboss.org/jira/browse/JBPORTAL-2453 Project: JBoss Portal Issue Type: Bug Security Level: Public (Everyone can see) Components: Portal Widget Affects Versions: 2.7.2 Final, 2.7.0 Final, 2.7.1 Final Reporter: Toshiya Kobayashi Assignee: Magesh Kumar B There are some gadgets which require additional parameters when you add the gadget to your dashboard. For instance, these gadgets of Google Apps for hosted domain: url=http://hosting.gmodules.com/ig/gadgets/file/117808631063490062819/hos... url=http://hosting.gmodules.com/ig/gadgets/file/117808631063490062819/hos... url=http://hosting.gmodules.com/ig/gadgets/file/117808631063490062819/hos... But the values of the parameters which you have input will be lost when those gadgets are displayed. ## script tags that jboss-portal-2.7.2 generates ## <script src="http://gmodules.com/ig/ifr?url=http://hosting.gmodules.com/ig/gadgets/fil..."></script> <script src="http://gmodules.com/ig/ifr?url=http://hosting.gmodules.com/ig/gadgets/fil..."></script> <script src="http://gmodules.com/ig/ifr?url=http://hosting.gmodules.com/ig/gadgets/fil..."></script> ## script tags that jboss-portal-2.6.6 generates ## <script src="http://gmodules.com/ig/ifr?url=http://hosting.gmodules.com/ig/gadgets/fil..."></script> <script src="http://gmodules.com/ig/ifr?url=http://hosting.gmodules.com/ig/gadgets/fil..."></script> <script src="http://gmodules.com/ig/ifr?url=http://hosting.gmodules.com/ig/gadgets/fil..."></script> Note: In order to reproduce it, first, you should fix org.jboss.portal.widget.google.provider.GGWidgetInfoBuilder in jboss-portal in the same way as JBEPP-109. https://jira.jboss.org/jira/browse/JBEPP-109 If you want to reproduce it easily, use epp-4.3.0.GA CP02 to which JBEPP-109 has been already applyed. As you see, script tags which jboss-portal-2.7.2 generates don't have parameters which you have input (e.g. up_Domain). Those values seem to be stored in JBP_PORTAL_OBJECT_PROPS table. Checked versions: NG : 2.7.2, 2.7.1, 2.7.0, epp-4.3.0.GA CP02 OK : 2.6.8, 2.6.6 This problem seems to be introduced from 2.7.x -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 8 months

2
3
0 / 0

[JBoss JIRA] Created: (JBID-187) Move IDFed config schema from web module to core module

by Anil Saldhana (JIRA)

Move IDFed config schema from web module to core module -------------------------------------------------------- Key: JBID-187 URL: https://jira.jboss.org/jira/browse/JBID-187 Project: JBoss Identity Issue Type: Task Components: Identity-Federation Affects Versions: IDFED-1.0.0.beta1 Reporter: Anil Saldhana Assignee: Anil Saldhana Fix For: IDFED-1.0.0.beta2 -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 8 months

1
1
0 / 0

[JBoss JIRA] Created: (JBID-189) Add 'TokenElement' and 'TokenElementNS' to the SAML20TokenPovider in jboss-sts.xml

by Daniel Bevenius (JIRA)

Add 'TokenElement' and 'TokenElementNS' to the SAML20TokenPovider in jboss-sts.xml ---------------------------------------------------------------------------------- Key: JBID-189 URL: https://jira.jboss.org/jira/browse/JBID-189 Project: JBoss Identity Issue Type: Task Reporter: Daniel Bevenius Assignee: Anil Saldhana Priority: Minor To get token validation to work using a saml assertion I needed to add the TokenElement and TokenElementNS to jboss-sts.xml: <TokenProvider ProviderClass="org.jboss.identity.federation.core.wstrust.plugins.saml.SAML20TokenProvider" TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0" TokenElement="Assertion" TokenElementNS="urn:oasis:names:tc:SAML:2.0:assertion"/> Without this in jboss-sts.xml no provider will be found and a NullPointerException will be throw: 16:44:11,343 ERROR [SOAPFaultHelperJAXWS] SOAP request exception java.lang.NullPointerException at org.jboss.identity.federation.core.wstrust.StandardRequestHandler.validate(StandardRequestHandler.java:336) at org.jboss.identity.federation.bindings.jboss.wstrust.JBossSTS.handleTokenRequest(JBossSTS.java:142) at org.jboss.identity.federation.bindings.jboss.wstrust.JBossSTS.invoke(JBossSTS.java:90) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) Perhaps a check in StandardRequestHander that gives some more info would help: if (provider == null) throw new WSTrustException("No SecurityTokenProvider configured for " + securityToken.getNamespaceURI() + ":" + securityToken.getLocalName()); -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 8 months

2
2
0 / 0

[JBoss JIRA] Created: (JBID-188) Update package name of SAML20TokenProvider in jboss-sts.xml

by Daniel Bevenius (JIRA)

Update package name of SAML20TokenProvider in jboss-sts.xml ----------------------------------------------------------- Key: JBID-188 URL: https://jira.jboss.org/jira/browse/JBID-188 Project: JBoss Identity Issue Type: Task Reporter: Daniel Bevenius Assignee: Anil Saldhana Priority: Trivial The current package name is: <TokenProvider ProviderClass="org.jboss.identity.federation.api.wstrust.plugins.saml.SAML20TokenProvider" I believe that the package name has changed to: <TokenProvider ProviderClass="org.jboss.identity.federation.core.wstrust.plugins.saml.SAML20TokenProvider" This can be found in jboss-identity-webapps/jboss-sts/src/resources/jboss-sts.xml. I was unsure about the Component to which this module belongs so I've left that option as 'Unknown'. Same goes for the versions. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 8 months

2
2
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira September 2009