November 2011 - jboss-jira - Jboss List Archives

[JBoss JIRA] (AS7-2383) Implement CSRF Protection for HTTP Interface

by Darran Lofthouse (Created) (JIRA)

Implement CSRF Protection for HTTP Interface -------------------------------------------- Key: AS7-2383 URL: https://issues.jboss.org/browse/AS7-2383 Project: Application Server 7 Issue Type: Bug Components: Domain Management, Security Reporter: Darran Lofthouse Assignee: Darran Lofthouse Priority: Critical Fix For: 7.1.0.CR1 For the HTTP interface we need some form of cross site request forgery protection to cover scenarios where an administrator has already authenticated against AS so the web browser has cached credentials - we need to prevent malicious requests from the same web browser. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 6 months

2
1
0 / 0

[JBoss JIRA] Created: (SECURITY-618) PicketBoxSecurityVault should add an INFO log entry after starting

by Anil Saldhana (JIRA)

PicketBoxSecurityVault should add an INFO log entry after starting ------------------------------------------------------------------ Key: SECURITY-618 URL: https://issues.jboss.org/browse/SECURITY-618 Project: PicketBox (JBoss Security and Identity Management) Issue Type: Feature Request Security Level: Public (Everyone can see) Reporter: Anil Saldhana Assignee: Anil Saldhana After starting, the default vault implementation should have a log INFO entry. -- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 6 months

3
3
0 / 0

[JBoss JIRA] Created: (SECURITY-609) PicketBox exception messages should have error IDs

by Anil Saldhana (JIRA)

PicketBox exception messages should have error IDs -------------------------------------------------- Key: SECURITY-609 URL: https://issues.jboss.org/browse/SECURITY-609 Project: PicketBox (JBoss Security and Identity Management) Issue Type: Feature Request Security Level: Public (Everyone can see) Reporter: Anil Saldhana Assignee: Marcus Moyses Fix For: PicketBox_v4_0_2 Based on http://community.jboss.org/wiki/HowToLogInJBossProjects we should look for all the exceptions that we throw and add in PBox error codes such that they can be documented properly -- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 6 months

5
5
0 / 0

[JBoss JIRA] (JBVFS-178) Add ability to get root URL for a mount

by David Lloyd (Created) (JIRA)

Add ability to get root URL for a mount --------------------------------------- Key: JBVFS-178 URL: https://issues.jboss.org/browse/JBVFS-178 Project: JBoss VFS Issue Type: Task Security Level: Public (Everyone can see) Reporter: David Lloyd Assignee: David Lloyd Fix For: 3.1.0.CR1 This is needed in some situations for determining the proper code source of a deployment. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 6 months

2
1
0 / 0

[JBoss JIRA] (AS7-2474) Add jaxen dependecy to dom4j module

by Luciano Blasetti (Created) (JIRA)

Add jaxen dependecy to dom4j module ----------------------------------- Key: AS7-2474 URL: https://issues.jboss.org/browse/AS7-2474 Project: Application Server 7 Issue Type: Feature Request Components: Modules Affects Versions: 7.0.2.Final Reporter: Luciano Blasetti Assignee: David Lloyd Priority: Minor Fix For: 7.1.0.CR1 jaxen dependency should be included with the default dom4j module to provide xpath support -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 6 months

2
1
0 / 0

[JBoss JIRA] Created: (SECURITY-625) Retrofit standard login modules with the vault stuff

by Anil Saldhana (JIRA)

Retrofit standard login modules with the vault stuff ---------------------------------------------------- Key: SECURITY-625 URL: https://issues.jboss.org/browse/SECURITY-625 Project: PicketBox (JBoss Security and Identity Management) Issue Type: Feature Request Security Level: Public (Everyone can see) Reporter: Anil Saldhana Assignee: Anil Saldhana Fix For: PicketBox_v4_0_6 We need to retrofit all the standard login modules to able to get the password from the vault. -- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 6 months

3
3
0 / 0

[JBoss JIRA] Created: (AS7-1528) Add warning in getting started guide advising management interfaces should be secured.

by Darran Lofthouse (JIRA)

Add warning in getting started guide advising management interfaces should be secured. -------------------------------------------------------------------------------------- Key: AS7-1528 URL: https://issues.jboss.org/browse/AS7-1528 Project: Application Server 7 Issue Type: Task Components: Domain Management, Security Reporter: Darran Lofthouse Assignee: Darran Lofthouse Fix For: 7.1.0.Alpha1 https://docs.jboss.org/author/display/AS7/Getting+Started+Guide -- This message is automatically generated by JIRA. For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 6 months

2
2
0 / 0

[JBoss JIRA] (AS7-2472) Upgrade JBoss Stdio to 1.0.1.GA

by David Lloyd (Created) (JIRA)

Upgrade JBoss Stdio to 1.0.1.GA ------------------------------- Key: AS7-2472 URL: https://issues.jboss.org/browse/AS7-2472 Project: Application Server 7 Issue Type: Component Upgrade Components: Logging Reporter: David Lloyd Assignee: David Lloyd Fix For: 7.1.0.Beta1 -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 6 months

1
0
0 / 0

[JBoss JIRA] (AS7-2457) Release jboss-stdio

by James Perkins (Created) (JIRA)

Release jboss-stdio ------------------- Key: AS7-2457 URL: https://issues.jboss.org/browse/AS7-2457 Project: Application Server 7 Issue Type: Task Components: Logging Reporter: James Perkins Assignee: David Lloyd Priority: Blocker Fix For: 7.1.0.Beta1 Just need a release of jboss-stdio. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 6 months

2
1
0 / 0

[JBoss JIRA] (AS7-2134) Add socket configuration for outbound connections

by David Lloyd (Created) (JIRA)

Add socket configuration for outbound connections ------------------------------------------------- Key: AS7-2134 URL: https://issues.jboss.org/browse/AS7-2134 Project: Application Server 7 Issue Type: Task Components: Server Reporter: David Lloyd Assignee: Jason Greene Fix For: 7.1.0.Beta1 Provide the ability to create named configurations for outbound connections which includes: # (Optional) Source address # Destination address # Destination port Other configuration items might include: # (Optional) Source port or port range # (Optional) Multiple dest. addresses or port ranges -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira

14 years, 6 months

4
4
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira November 2011