November 2016 - jboss-jira - Jboss List Archives

[JBoss JIRA] (WFLY-7175) Complex type server-ssl-context/ssl-session in Elytron subsystem

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFLY-7175?page=com.atlassian.jira.plugin.... ] Darran Lofthouse updated WFLY-7175: ----------------------------------- Fix Version/s: 11.0.0.Alpha1 > Complex type server-ssl-context/ssl-session in Elytron subsystem > ---------------------------------------------------------------- > > Key: WFLY-7175 > URL: https://issues.jboss.org/browse/WFLY-7175 > Project: WildFly > Issue Type: Bug > Components: Security > Reporter: Ondrej Lukas > Assignee: Jan Kalina > Priority: Critical > Fix For: 11.0.0.Alpha1 > > > Elytron subsystem uses complex type in server-ssl-context resource which is difficult to use and can result to bad user experience, see description of JBEAP-6100 for more details. > Details: *server-ssl-context/ssl-session* - nested complex attributes (not critical in the short term - although exposing management information that provides insight into the current sessions would be a big bonus for administrators) -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 5 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7573) Elytron oauth2-introspection descriptions copy/pasted from jwt

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFLY-7573?page=com.atlassian.jira.plugin.... ] Darran Lofthouse updated WFLY-7573: ----------------------------------- Affects Version/s: (was: 11.0.0.Alpha1) > Elytron oauth2-introspection descriptions copy/pasted from jwt > -------------------------------------------------------------- > > Key: WFLY-7573 > URL: https://issues.jboss.org/browse/WFLY-7573 > Project: WildFly > Issue Type: Bug > Components: Security > Reporter: Martin Choma > Assignee: Pedro Igor > Fix For: 11.0.0.Alpha1 > > > /token-realm/oauth2-introspection descriptions are apparently copied from jwt. For example: > {code} > "client-secret" => { > "type" => STRING, > "description" => "A list of strings representing the audiences supported by this configuration. During validation JWT tokens must have an <code>aud</code> claim that contains one of the values defined here.", > "expressions-allowed" => false, > "nillable" => false, > "min-length" => 1L, > "max-length" => 2147483647L > } > {code} > It applies to these attributes: > * {{client-id}} > * {{client-secret}} > * {{client-ssl-context}} > * {{introspection-url}} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 5 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7573) Elytron oauth2-introspection descriptions copy/pasted from jwt

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFLY-7573?page=com.atlassian.jira.plugin.... ] Darran Lofthouse updated WFLY-7573: ----------------------------------- Fix Version/s: 11.0.0.Alpha1 > Elytron oauth2-introspection descriptions copy/pasted from jwt > -------------------------------------------------------------- > > Key: WFLY-7573 > URL: https://issues.jboss.org/browse/WFLY-7573 > Project: WildFly > Issue Type: Bug > Components: Security > Reporter: Martin Choma > Assignee: Pedro Igor > Fix For: 11.0.0.Alpha1 > > > /token-realm/oauth2-introspection descriptions are apparently copied from jwt. For example: > {code} > "client-secret" => { > "type" => STRING, > "description" => "A list of strings representing the audiences supported by this configuration. During validation JWT tokens must have an <code>aud</code> claim that contains one of the values defined here.", > "expressions-allowed" => false, > "nillable" => false, > "min-length" => 1L, > "max-length" => 2147483647L > } > {code} > It applies to these attributes: > * {{client-id}} > * {{client-secret}} > * {{client-ssl-context}} > * {{introspection-url}} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 5 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7482) Poor description of mechanism-name attribute

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFLY-7482?page=com.atlassian.jira.plugin.... ] Darran Lofthouse updated WFLY-7482: ----------------------------------- Affects Version/s: (was: 11.0.0.Alpha1) > Poor description of mechanism-name attribute > -------------------------------------------- > > Key: WFLY-7482 > URL: https://issues.jboss.org/browse/WFLY-7482 > Project: WildFly > Issue Type: Bug > Components: Security > Reporter: Martin Choma > Assignee: Ilia Vassilev > Labels: user_experience > Fix For: 11.0.0.Alpha1 > > > Description in model : "The name of the mechanism the configuration applies to" > XSD description is better and explains why is mechanism-name optional: "This configuration will only apply where a mechanism with the name specified is used. If this attribute is omited then this will match any mechanism name." > Synchronize descriptions - use description from XSD. in model > Issue applies to attribute occurences in > * http-server-mechanism-factory > * sasl-authentication-factory > Also applies to description in operation add description. Not sure if this is automatic, therefore mentioning it explicitly. > {code} > /subsystem=elytron/http-authentication-factory=a:read-operation-description(name=add) > {code} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 5 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7482) Poor description of mechanism-name attribute

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFLY-7482?page=com.atlassian.jira.plugin.... ] Darran Lofthouse updated WFLY-7482: ----------------------------------- Fix Version/s: 11.0.0.Alpha1 > Poor description of mechanism-name attribute > -------------------------------------------- > > Key: WFLY-7482 > URL: https://issues.jboss.org/browse/WFLY-7482 > Project: WildFly > Issue Type: Bug > Components: Security > Reporter: Martin Choma > Assignee: Ilia Vassilev > Labels: user_experience > Fix For: 11.0.0.Alpha1 > > > Description in model : "The name of the mechanism the configuration applies to" > XSD description is better and explains why is mechanism-name optional: "This configuration will only apply where a mechanism with the name specified is used. If this attribute is omited then this will match any mechanism name." > Synchronize descriptions - use description from XSD. in model > Issue applies to attribute occurences in > * http-server-mechanism-factory > * sasl-authentication-factory > Also applies to description in operation add description. Not sure if this is automatic, therefore mentioning it explicitly. > {code} > /subsystem=elytron/http-authentication-factory=a:read-operation-description(name=add) > {code} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 5 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7552) Elytron mapped-regex-realm-mapper "pattern" and "name" attributs have wrong description.

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFLY-7552?page=com.atlassian.jira.plugin.... ] Darran Lofthouse updated WFLY-7552: ----------------------------------- Fix Version/s: 11.0.0.Alpha1 > Elytron mapped-regex-realm-mapper "pattern" and "name" attributs have wrong description. > ---------------------------------------------------------------------------------------- > > Key: WFLY-7552 > URL: https://issues.jboss.org/browse/WFLY-7552 > Project: WildFly > Issue Type: Bug > Components: Security > Reporter: Hynek Švábek > Assignee: Dmitrii Tikhomirov > Fix For: 11.0.0.Alpha1 > > > Elytron mapped-regex-realm-mapper "pattern" and "name" attributes have wrong description [1]. > *Actual description* > {code} > The regular expression to use for this NameRewriter. > {code} > *Expected description* > Some like that (from DMR): > {code} > The regular expression which must contain at least one capture group to extract the realm from the name. > {code} > [1] https://github.com/wildfly-security/elytron-subsystem/blob/580569d17cb6c3... -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 5 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7480) Description of Elytron final-name-rewriter resource

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFLY-7480?page=com.atlassian.jira.plugin.... ] Darran Lofthouse updated WFLY-7480: ----------------------------------- Affects Version/s: (was: 11.0.0.Alpha1) > Description of Elytron final-name-rewriter resource > --------------------------------------------------- > > Key: WFLY-7480 > URL: https://issues.jboss.org/browse/WFLY-7480 > Project: WildFly > Issue Type: Bug > Components: Security > Reporter: Martin Choma > Assignee: Ilia Vassilev > Labels: user_experience > Fix For: 11.0.0.Alpha1 > > > Describe in model / add operation / XSD purpose of this attribute. It is not obvious from name neither from description "The final name rewriter" > What does this rewriter rewrites? > As a reference, it can be configured in conjuction with {{pre-realm-mapper}} and {{post-realm-mapper}}, in those two cases I can understand from name and description what is it for. > This JIRA applies to all occurences of {{final-name-rewriter}} in model: > * 2x in {{http-authentication-factory}} > * 2x in {{sasl-authentication-factory}} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 5 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7480) Description of Elytron final-name-rewriter resource

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFLY-7480?page=com.atlassian.jira.plugin.... ] Darran Lofthouse updated WFLY-7480: ----------------------------------- Fix Version/s: 11.0.0.Alpha1 > Description of Elytron final-name-rewriter resource > --------------------------------------------------- > > Key: WFLY-7480 > URL: https://issues.jboss.org/browse/WFLY-7480 > Project: WildFly > Issue Type: Bug > Components: Security > Reporter: Martin Choma > Assignee: Ilia Vassilev > Labels: user_experience > Fix For: 11.0.0.Alpha1 > > > Describe in model / add operation / XSD purpose of this attribute. It is not obvious from name neither from description "The final name rewriter" > What does this rewriter rewrites? > As a reference, it can be configured in conjuction with {{pre-realm-mapper}} and {{post-realm-mapper}}, in those two cases I can understand from name and description what is it for. > This JIRA applies to all occurences of {{final-name-rewriter}} in model: > * 2x in {{http-authentication-factory}} > * 2x in {{sasl-authentication-factory}} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 5 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7477) Elytron dir-context not updatable

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFLY-7477?page=com.atlassian.jira.plugin.... ] Darran Lofthouse updated WFLY-7477: ----------------------------------- Affects Version/s: (was: 11.0.0.Alpha1) > Elytron dir-context not updatable > --------------------------------- > > Key: WFLY-7477 > URL: https://issues.jboss.org/browse/WFLY-7477 > Project: WildFly > Issue Type: Bug > Components: Security > Reporter: Martin Choma > Assignee: Ilia Vassilev > Fix For: 11.0.0.Alpha1 > > > All attributes of {{dir-context}} resource are read-only. > Attempt to update: > {code} > [standalone@localhost:9990 /] /subsystem=elytron/dir-context=dc:write-attribute(name=url, value=ldap://localhost:10389) > { > "outcome" => "failed", > "failure-description" => "WFLYCTL0048: Attribute url is not writable", > "rolled-back" => true > } > {code} > Model description: > {code} > "url" => { > "type" => STRING, > "description" => "The connection url.", > "expressions-allowed" => true, > "nillable" => true, > "min-length" => 1L, > "max-length" => 2147483647L, > "access-type" => "read-only", > "storage" => "configuration" > } > {code} > Make {{dir-context}} updatable. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 5 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7477) Elytron dir-context not updatable

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFLY-7477?page=com.atlassian.jira.plugin.... ] Darran Lofthouse updated WFLY-7477: ----------------------------------- Fix Version/s: 11.0.0.Alpha1 > Elytron dir-context not updatable > --------------------------------- > > Key: WFLY-7477 > URL: https://issues.jboss.org/browse/WFLY-7477 > Project: WildFly > Issue Type: Bug > Components: Security > Reporter: Martin Choma > Assignee: Ilia Vassilev > Fix For: 11.0.0.Alpha1 > > > All attributes of {{dir-context}} resource are read-only. > Attempt to update: > {code} > [standalone@localhost:9990 /] /subsystem=elytron/dir-context=dc:write-attribute(name=url, value=ldap://localhost:10389) > { > "outcome" => "failed", > "failure-description" => "WFLYCTL0048: Attribute url is not writable", > "rolled-back" => true > } > {code} > Model description: > {code} > "url" => { > "type" => STRING, > "description" => "The connection url.", > "expressions-allowed" => true, > "nillable" => true, > "min-length" => 1L, > "max-length" => 2147483647L, > "access-type" => "read-only", > "storage" => "configuration" > } > {code} > Make {{dir-context}} updatable. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 5 months

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira November 2016