August 2017 - jboss-jira - Jboss List Archives

[JBoss JIRA] (ELY-61) Ensure the requirements and options for each mechanism are described within the mechanism.

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-61?page=com.atlassian.jira.plugin.sys... ] Darran Lofthouse updated ELY-61: -------------------------------- Fix Version/s: 1.2.0.Beta3 (was: 1.2.0.Beta1) > Ensure the requirements and options for each mechanism are described within the mechanism. > ------------------------------------------------------------------------------------------ > > Key: ELY-61 > URL: https://issues.jboss.org/browse/ELY-61 > Project: WildFly Elytron > Issue Type: Task > Reporter: Darran Lofthouse > Fix For: 1.2.0.Beta3 > > > Everything from callback requirements, supported config options to System properties. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-60) Update the local authentication mechanism to allow permissions to be specified for the challenge file.

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-60?page=com.atlassian.jira.plugin.sys... ] Darran Lofthouse updated ELY-60: -------------------------------- Fix Version/s: 1.2.0.Beta3 (was: 1.2.0.Beta1) > Update the local authentication mechanism to allow permissions to be specified for the challenge file. > ------------------------------------------------------------------------------------------------------ > > Key: ELY-60 > URL: https://issues.jboss.org/browse/ELY-60 > Project: WildFly Elytron > Issue Type: Task > Reporter: Darran Lofthouse > Fix For: 1.2.0.Beta3 > > > (This would include switching to a dependency on Java 7 server side at least) -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-54) Support for stronger hashes as alternatives to MD5

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-54?page=com.atlassian.jira.plugin.sys... ] Darran Lofthouse updated ELY-54: -------------------------------- Fix Version/s: 1.2.0.Beta3 (was: 1.2.0.Beta1) > Support for stronger hashes as alternatives to MD5 > -------------------------------------------------- > > Key: ELY-54 > URL: https://issues.jboss.org/browse/ELY-54 > Project: WildFly Elytron > Issue Type: Feature Request > Reporter: Darran Lofthouse > Fix For: 1.2.0.Beta3 > > > Presently Digest authentication is based on MD5 - however we should either update the mechanism or add new mechanisms to support the use of stronger hashes. > As this library is used both client and server side installations that require the stronger hashes can just ensure the client and server have the latest version of this library - installations that still require interaction with MD5 will need to ensure that it is still available as a mechanism. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-42) Vault

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-42?page=com.atlassian.jira.plugin.sys... ] Darran Lofthouse updated ELY-42: -------------------------------- Fix Version/s: 1.2.0.Beta3 (was: 1.2.0.Beta1) > Vault > ----- > > Key: ELY-42 > URL: https://issues.jboss.org/browse/ELY-42 > Project: WildFly Elytron > Issue Type: Feature Request > Components: API / SPI > Reporter: Darran Lofthouse > Fix For: 1.2.0.Beta3 > > -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-23) Add support for RFC5803

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-23?page=com.atlassian.jira.plugin.sys... ] Darran Lofthouse updated ELY-23: -------------------------------- Fix Version/s: 1.2.0.Beta3 (was: 1.2.0.Beta1) > Add support for RFC5803 > ----------------------- > > Key: ELY-23 > URL: https://issues.jboss.org/browse/ELY-23 > Project: WildFly Elytron > Issue Type: Sub-task > Reporter: Darran Lofthouse > Fix For: 1.2.0.Beta3 > > > RFC5803 adds support for storing SCRAM secrets in the 'authPassword' attribute introduced by RFC3112 -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-22) Expand LDAP realm to support RFC3112

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-22?page=com.atlassian.jira.plugin.sys... ] Darran Lofthouse updated ELY-22: -------------------------------- Fix Version/s: 1.2.0.Beta3 (was: 1.2.0.Beta1) > Expand LDAP realm to support RFC3112 > ------------------------------------ > > Key: ELY-22 > URL: https://issues.jboss.org/browse/ELY-22 > Project: WildFly Elytron > Issue Type: Sub-task > Reporter: Darran Lofthouse > Fix For: 1.2.0.Beta3 > > > RFC3112 adds a new attribute 'authPassword' and can be used to store passwords in various formats. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-155) Condense Message IDs

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-155?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse updated ELY-155: --------------------------------- Fix Version/s: 1.2.0.Beta3 (was: 1.2.0.Beta1) > Condense Message IDs > -------------------- > > Key: ELY-155 > URL: https://issues.jboss.org/browse/ELY-155 > Project: WildFly Elytron > Issue Type: Task > Reporter: Darran Lofthouse > Priority: Blocker > Fix For: 1.2.0.Beta3 > > > This is a task to complete at the point of tagging, condense the message IDs to close any gaps in the numbering. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-154) Session based DigestCredential support

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-154?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse updated ELY-154: --------------------------------- Fix Version/s: 1.2.0.Beta3 (was: 1.2.0.Beta1) > Session based DigestCredential support > -------------------------------------- > > Key: ELY-154 > URL: https://issues.jboss.org/browse/ELY-154 > Project: WildFly Elytron > Issue Type: Sub-task > Components: Passwords > Reporter: Darran Lofthouse > Fix For: 1.2.0.Beta3 > > > DigestCredential but where additional information is included such as nonce and cnonce to create a credential applicable to a session. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-151) Ability to supply additional information during credential acquisition

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-151?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse updated ELY-151: --------------------------------- Fix Version/s: 1.2.0.Beta3 (was: 1.2.0.Beta1) > Ability to supply additional information during credential acquisition > ---------------------------------------------------------------------- > > Key: ELY-151 > URL: https://issues.jboss.org/browse/ELY-151 > Project: WildFly Elytron > Issue Type: Enhancement > Components: API / SPI, Passwords > Reporter: Darran Lofthouse > Fix For: 1.2.0.Beta3 > > > I think this is the final known gap in our credential acquisition and validation API/SPI. > There are a couple of specifications that also allow for additional information to be used when obtaining a representation of a users credential, the most obvious being the session based variant of digest authentication where a nonce and cnonce are also incorporated. > A second variant with two different modes of operation would be the realm associated with the digest credential, currently we assume it is tightly associated with the storage representation of the credential but it could also be the case that the mech is requesting it for a specific realm. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-138) Client timed logout options

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-138?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse updated ELY-138: --------------------------------- Fix Version/s: 1.2.0.Beta3 (was: 1.2.0.Beta1) > Client timed logout options > --------------------------- > > Key: ELY-138 > URL: https://issues.jboss.org/browse/ELY-138 > Project: WildFly Elytron > Issue Type: Task > Reporter: David Lloyd > Fix For: 1.2.0.Beta3 > > > It should be possible to configure a client-side authentication to auto-logout after either an absolute duration, or after some amount of idle time, or both. > The client-side authentication cache, whatever form it takes, must be aware of usages to update the logout time, for idle timeouts. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira August 2017