August 2017 - jboss-jira - Jboss List Archives

[JBoss JIRA] (ELY-969) Add a KeyStore implementation that can use the key store password for retrieving entries.

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-969?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse reassigned ELY-969: ------------------------------------ Assignee: (was: Darran Lofthouse) > Add a KeyStore implementation that can use the key store password for retrieving entries. > ----------------------------------------------------------------------------------------- > > Key: ELY-969 > URL: https://issues.jboss.org/browse/ELY-969 > Project: WildFly Elytron > Issue Type: Feature Request > Components: KeyStores > Reporter: Darran Lofthouse > Fix For: 1.2.0.Beta1 > > > A KeyManager which uses a KeyStore is defined independently of the KeyStore - it is the KeyManager that has the password for the entry in the KeyStore whilst the KeyStore has the password for the overall store. > In many cases the password used for the overall store is the same password as used for the entries. > We should provide a KeyStore implementation that can substitute the password received. > We may even be able to go one step further and add a password resolver which could mean a CredentialStore is used to obtain the password for different entries, -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-16) Add a RFC2256 based LDAP Realm

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-16?page=com.atlassian.jira.plugin.sys... ] Darran Lofthouse reassigned ELY-16: ----------------------------------- Assignee: (was: Darran Lofthouse) > Add a RFC2256 based LDAP Realm > ------------------------------ > > Key: ELY-16 > URL: https://issues.jboss.org/browse/ELY-16 > Project: WildFly Elytron > Issue Type: Sub-task > Reporter: Darran Lofthouse > Fix For: 2.0.0.Alpha1 > > > RFC2256 defines the userPassword attribute on LDAP entries, officially this is supposed to be clear text - however many vendors now support a one way hash where the hash algorithm is specified at the beginning of the attribute value: - > {noformat} > {ssha}izu672WN0xA2ZaYofeiWyQ5QKxEBMNsbyQKwRw== > {noformat} > {noformat} > ( 2.5.4.35 NAME 'userPassword' DESC 'RFC2256/2307: password of user' EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 USAGE userApplications X-SCHEMA 'system' ) > {noformat} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-759) DirContext with non-simple auth-level should use Elytron SASL

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-759?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse reassigned ELY-759: ------------------------------------ Assignee: (was: Darran Lofthouse) > DirContext with non-simple auth-level should use Elytron SASL > ------------------------------------------------------------- > > Key: ELY-759 > URL: https://issues.jboss.org/browse/ELY-759 > Project: WildFly Elytron > Issue Type: Enhancement > Reporter: Jan Kalina > Priority: Optional > > DirContext allows to use SASL for LDAP authentication: > {code:java} > <dir-context authentication-level="DIGEST-MD5" name="DirContextInsecure" url="ldap://localhost:11391/"/> > {code} > Would be logical to ensure Elytron SASL clients will be used. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-826) Permission check for SecurityDomain.mapPrincipal and mapName

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-826?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse reassigned ELY-826: ------------------------------------ Assignee: (was: David Lloyd) > Permission check for SecurityDomain.mapPrincipal and mapName > ------------------------------------------------------------ > > Key: ELY-826 > URL: https://issues.jboss.org/browse/ELY-826 > Project: WildFly Elytron > Issue Type: Feature Request > Components: API / SPI > Reporter: David Lloyd > > Plus, access to privileged mapping functions for above. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-1192) HTTP status 500 when no principal is returned by aggregate-principal-transformer

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-1192?page=com.atlassian.jira.plugin.s... ] Darran Lofthouse reassigned ELY-1192: ------------------------------------- Assignee: (was: Darran Lofthouse) > HTTP status 500 when no principal is returned by aggregate-principal-transformer > -------------------------------------------------------------------------------- > > Key: ELY-1192 > URL: https://issues.jboss.org/browse/ELY-1192 > Project: WildFly Elytron > Issue Type: Bug > Affects Versions: 1.1.0.Beta42 > Reporter: Ondrej Lukas > > In case security domain used by deployed application uses {{aggregate-principal-transformer}} which includes some {{principal-transformers}} and none of them returns non-null principal then HTTP status 500 with 'ELY01003: No authentication is in progress' is returned by application. It causes that authentication cannot be repeated (e.g. when user provides some typo in username). It should rather throw HTTP status 401 to allow repeating authentication process. > This situation can happen if {{aggregate-principal-transformer}} is used as decision tree (see [1] for details) and uses only transformers which can return null principal (e.g. only chained-principal-transformers). > This happens when {{aggregate-principal-transformer}} is used in {{pre-realm-principal-transformer}} for security domain. It does not happen when {{aggregate-principal-transformer}} is used in {{principal-transformer}} for realm in security domain. > [1] https://issues.jboss.org/browse/JBEAP-9628?focusedCommentId=13399462&page... -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-61) Ensure the requirements and options for each mechanism are described within the mechanism.

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-61?page=com.atlassian.jira.plugin.sys... ] Darran Lofthouse updated ELY-61: -------------------------------- Fix Version/s: 1.2.0.Beta1 (was: 1.1.0.Final) > Ensure the requirements and options for each mechanism are described within the mechanism. > ------------------------------------------------------------------------------------------ > > Key: ELY-61 > URL: https://issues.jboss.org/browse/ELY-61 > Project: WildFly Elytron > Issue Type: Task > Reporter: Darran Lofthouse > Fix For: 1.2.0.Beta1 > > > Everything from callback requirements, supported config options to System properties. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-42) Vault

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-42?page=com.atlassian.jira.plugin.sys... ] Darran Lofthouse updated ELY-42: -------------------------------- Fix Version/s: 1.2.0.Beta1 (was: 1.1.0.Final) > Vault > ----- > > Key: ELY-42 > URL: https://issues.jboss.org/browse/ELY-42 > Project: WildFly Elytron > Issue Type: Feature Request > Components: API / SPI > Reporter: Darran Lofthouse > Assignee: Peter Skopek > Fix For: 1.2.0.Beta1 > > -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-490) Add JavaDoc for the 'org.wildfly.security.ssl' package and sub packages.

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-490?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse updated ELY-490: --------------------------------- Fix Version/s: 1.2.0.Beta1 (was: 1.1.0.Final) > Add JavaDoc for the 'org.wildfly.security.ssl' package and sub packages. > ------------------------------------------------------------------------ > > Key: ELY-490 > URL: https://issues.jboss.org/browse/ELY-490 > Project: WildFly Elytron > Issue Type: Enhancement > Reporter: Darran Lofthouse > Fix For: 1.2.0.Beta1 > > -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-489) Add JavaDoc for the 'org.wildfly.security.mechanism' package and sub packages.

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-489?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse updated ELY-489: --------------------------------- Fix Version/s: 1.2.0.Beta1 (was: 1.1.0.Final) > Add JavaDoc for the 'org.wildfly.security.mechanism' package and sub packages. > ------------------------------------------------------------------------------ > > Key: ELY-489 > URL: https://issues.jboss.org/browse/ELY-489 > Project: WildFly Elytron > Issue Type: Enhancement > Reporter: Darran Lofthouse > Fix For: 1.2.0.Beta1 > > -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

[JBoss JIRA] (ELY-486) Add JavaDoc for the 'org.wildfly.security.credential' package and sub packages.

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-486?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse updated ELY-486: --------------------------------- Fix Version/s: 1.2.0.Beta1 (was: 1.1.0.Final) > Add JavaDoc for the 'org.wildfly.security.credential' package and sub packages. > ------------------------------------------------------------------------------- > > Key: ELY-486 > URL: https://issues.jboss.org/browse/ELY-486 > Project: WildFly Elytron > Issue Type: Enhancement > Reporter: Darran Lofthouse > Fix For: 1.2.0.Beta1 > > -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 8 months

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira August 2017