[JBoss JIRA] (AS7-5632) add-user scripts to check password strength immediately after it's entered
by Darran Lofthouse (JIRA)
[ https://issues.jboss.org/browse/AS7-5632?page=com.atlassian.jira.plugin.s... ]
Darran Lofthouse updated AS7-5632:
----------------------------------
Fix Version/s: 7.2.0.Alpha1
(was: 7.2.0.CR1)
> add-user scripts to check password strength immediately after it's entered
> --------------------------------------------------------------------------
>
> Key: AS7-5632
> URL: https://issues.jboss.org/browse/AS7-5632
> Project: Application Server 7
> Issue Type: Enhancement
> Components: Domain Management, Security
> Affects Versions: 7.2.0.CR1
> Reporter: Cheng Fang
> Assignee: Darran Lofthouse
> Fix For: 7.2.0.Alpha1
>
>
> Can we validate the password immediately after the password is entered, before asking the user to enter a potentially useless password a second time, and before asking the user to assign a role. Currently the validation kicks in after adding role:
> Realm (ApplicationRealm) :
> Username : user1
> Password :
> Re-enter Password :
> What roles do you want this user to belong to? (Please enter a comma separated list, or leave blank for none)[ ]:
> Error *
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
12 years
[JBoss JIRA] (AS7-6049) Where security services in domain management have a dedicated interface provide a ServiceName factory.
by Darran Lofthouse (JIRA)
[ https://issues.jboss.org/browse/AS7-6049?page=com.atlassian.jira.plugin.s... ]
Darran Lofthouse updated AS7-6049:
----------------------------------
Fix Version/s: 7.3.0.Alpha1
(was: 7.2.0.Alpha1)
> Where security services in domain management have a dedicated interface provide a ServiceName factory.
> ------------------------------------------------------------------------------------------------------
>
> Key: AS7-6049
> URL: https://issues.jboss.org/browse/AS7-6049
> Project: Application Server 7
> Issue Type: Task
> Components: Domain Management
> Reporter: Darran Lofthouse
> Assignee: Darran Lofthouse
> Fix For: 7.3.0.Alpha1
>
>
> Update each of the interfaces with a factory for generating the service name.
> {code}
> public static class ServiceNameFactory {
> public ServiceName createServiceName(final String realmName) {
> return null;
> }
> }
> {code}
> Strictly speaking these are not currently expected to be used outside the AS codebase but should they be used outside of the domain-management module this will be the recommended way to generate the service names.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
12 years
[JBoss JIRA] (AS7-2227) Port the legacy jmx-console to AS7
by Darran Lofthouse (JIRA)
[ https://issues.jboss.org/browse/AS7-2227?page=com.atlassian.jira.plugin.s... ]
Darran Lofthouse updated AS7-2227:
----------------------------------
Fix Version/s: 7.3.0.Alpha1
(was: 7.2.0.Alpha1)
> Port the legacy jmx-console to AS7
> ----------------------------------
>
> Key: AS7-2227
> URL: https://issues.jboss.org/browse/AS7-2227
> Project: Application Server 7
> Issue Type: Feature Request
> Components: JMX
> Reporter: Dimitris Andreadis
> Assignee: Darran Lofthouse
> Labels: JMX, as7, jmx-console
> Fix For: 7.3.0.Alpha1, 7.1.4.Final (EAP)
>
> Attachments: jmx-console.war
>
>
> I've seen a few people asking for a port of the old jmx-console to AS7, for monitoring purposes, until equivalent functionality is available through the new GWT-based console.
> I've ported the old console in this branch:
> https://github.com/dandreadis/jboss-as/commits/jmx-console
> It only includes a new top-level directory 'jmx-console'. The directory is not build by default, and when you build it manually it does not alter the server configuration in any way, you need to manually copy the resulting target/jboss-as-jmx-console-VERSION.war to the server deployment directory (and rename it to jmx-console.war)
> If there is interest, it could be included in the AS7 distro in some top level 'legacy' directory so it is not deployed by default?
> The resulting .war is attached on this JIRA, in case someone wants to use it. It work just as well on AS 7.0.2 and the latest AS 7.1.x development branch.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
12 years
[JBoss JIRA] (AS7-4693) Implement Trust for users requesting to run as a different user.
by Darran Lofthouse (JIRA)
[ https://issues.jboss.org/browse/AS7-4693?page=com.atlassian.jira.plugin.s... ]
Darran Lofthouse updated AS7-4693:
----------------------------------
Fix Version/s: 7.3.0.Alpha1
(was: 7.2.0.Alpha1)
> Implement Trust for users requesting to run as a different user.
> ----------------------------------------------------------------
>
> Key: AS7-4693
> URL: https://issues.jboss.org/browse/AS7-4693
> Project: Application Server 7
> Issue Type: Sub-task
> Components: Remoting, Security
> Reporter: Darran Lofthouse
> Assignee: Darran Lofthouse
> Fix For: 7.3.0.Alpha1
>
>
> Where SASL is used for authentication users can request to authenticate as themselves but to be authorized to connect to the server as a different user.
> A couple of examples where this could be used: -
> - A user granting access to another user to log into their account.
> - A user with two levels of access e.g. normal and admin and requesting they have admin level access.
> Another area we are looking to use this feature is where one server connects to another server but want to be able to run requests on the remote server using the identity of a specified user.
> This Jira issue is to enhance the security realms to allow for trust permissions to be defined - initially this will be local to a single realm but will subsequently be opened up to work across different realms.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
12 years
[JBoss JIRA] (AS7-5047) Allow more control over authentication for server to server communication through remote-outbound-connection
by Darran Lofthouse (JIRA)
[ https://issues.jboss.org/browse/AS7-5047?page=com.atlassian.jira.plugin.s... ]
Darran Lofthouse updated AS7-5047:
----------------------------------
Fix Version/s: 7.3.0.Alpha1
(was: 7.2.0.Alpha1)
> Allow more control over authentication for server to server communication through remote-outbound-connection
> ------------------------------------------------------------------------------------------------------------
>
> Key: AS7-5047
> URL: https://issues.jboss.org/browse/AS7-5047
> Project: Application Server 7
> Issue Type: Sub-task
> Components: Remoting, Security
> Affects Versions: 7.1.1.Final, 7.1.2.Final (EAP)
> Reporter: jaikiran pai
> Assignee: Darran Lofthouse
> Fix For: 7.3.0.Alpha1
>
>
> Right now for server to server communication via a remote-outbound-connection, we expect a static username to be specified (along with the security realm). User applications which use this remote-outbound-connection, for example an EJB application, do not have much control over the user/pass information, since the username is static. This further acts a drawback since the username that's used to connect to the remote server will be used as the (application) user who invoked the EJB.
> It would be good to allow more control over the authentication for the remote-outbound-connection.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
12 years
[JBoss JIRA] (AS7-5901) Connection Reauthentication and Security Propagation
by Darran Lofthouse (JIRA)
[ https://issues.jboss.org/browse/AS7-5901?page=com.atlassian.jira.plugin.s... ]
Darran Lofthouse updated AS7-5901:
----------------------------------
Fix Version/s: 7.3.0.Alpha1
(was: 7.2.0.Alpha1)
> Connection Reauthentication and Security Propagation
> ----------------------------------------------------
>
> Key: AS7-5901
> URL: https://issues.jboss.org/browse/AS7-5901
> Project: Application Server 7
> Issue Type: Task
> Components: EJB, Remoting, Security
> Reporter: Darran Lofthouse
> Assignee: Darran Lofthouse
> Fix For: 7.3.0.Alpha1
>
>
> This task is a top level task to coordinate the addition of support for switching to different security identities on an existing connection over Remoting.
> This is to predominantly cover two major scenarios: -
> - Clients using a single connection but require different calls to be executed as different users, in this case the client has the information required to start a new authentication as a different user.
> - Server to server communication where the first server has already authenticated a remote user - for this scenario the first server needs a way to tell the second server what identity to run the call as.
> The following document is building up the requirements and design considerations and decisions: -
> https://community.jboss.org/wiki/ConnectionRe-AuthenticationAndSecurityPr...
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
12 years
[JBoss JIRA] (JGRP-1547) RELAY2: provide timing stats
by Bela Ban (JIRA)
[ https://issues.jboss.org/browse/JGRP-1547?page=com.atlassian.jira.plugin.... ]
Bela Ban commented on JGRP-1547:
--------------------------------
The stats are visible through JMX or probe, e.g.
probe.sh jmx=RELAY2.num,avg,time
> RELAY2: provide timing stats
> ----------------------------
>
> Key: JGRP-1547
> URL: https://issues.jboss.org/browse/JGRP-1547
> Project: JGroups
> Issue Type: Feature Request
> Reporter: Bela Ban
> Assignee: Bela Ban
> Priority: Minor
> Fix For: 3.3
>
>
> Provide the following stats:
> - Number of forwarded messages / total time / avg (min,max,median,99th percentile ?)
> - Number of forwarded msgs received
> - xsite forwards / avg etc
> - xsite forwards received
> - local forwards
> - local forwards received
> - local deliveries
> Ability to reset all stats, plus avg/median time for all sends
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
12 years