[jboss-jira] [JBoss JIRA] Commented: (AS7-1781) Provide management use cases and operations for the security subsystem
[
https://issues.jboss.org/browse/AS7-1781?page=com.atlassian.jira.plugin.s...
]
Marcus Moyses commented on AS7-1781:
------------------------------------
I guess we could have these operations somehow included in the management console:
- List security domains
for example:
[standalone@localhost:9999 /] ls subsystem=security/security-domain
other
- List cached principals for a domain
for example:
[standalone@localhost:9999 /] cd subsystem=security/security-domain=other
[standalone@localhost:9999 security-domain=other] :list-cached-principals
{
"outcome" => "success",
"result" => []
}
- Flush cached principals for a domain (all entries or single entry)
for example:
[standalone@localhost:9999 /] cd subsystem=security/security-domain=other
[standalone@localhost:9999 security-domain=other] :flush-cache
{"outcome" => "success"}
or for single entry
[standalone@localhost:9999 security-domain=other] :flush-cache(principal=admin)
{"outcome" => "success"}
- Remove security domain
for example:
[standalone@localhost:9999 /] cd subsystem=security/security-domain=other
[standalone@localhost:9999 security-domain=other] :remove
{"outcome" => "success"}
- Add security domain
for example:
[standalone@localhost:9999 /]
/subsystem=security/security-domain=other:add(cache-type=default,authentication=[{"code"=>"UsersRoles","flag"=>"required","module-options"=>[("usersProperties"=>"users.properties"),("rolesProperties"=>"roles.properties")]}])
This last operation is more complicated as we need to allow all subtypes described in the
xsd under the security domain (authentication, authorization, etc) each with their own
attributes and as many module options as the user wants. I could provide a full example if
needed.
Provide management use cases and operations for the security
subsystem
----------------------------------------------------------------------
Key: AS7-1781
URL: https://issues.jboss.org/browse/AS7-1781
Project: Application Server 7
Issue Type: Feature Request
Components: Security
Reporter: Heiko Braun
Assignee: Marcus Moyses
Fix For: 7.1.0.Beta1
I cannot identify the use cases nor specific management operations on the current
security subsystem:
{noformat}
[standalone@localhost:9999 /] /subsystem=security:read-resource(recursive=true)
{
"outcome" => "success",
"result" => {
"audit-manager-class-name" => "default",
"authentication-manager-class-name" => "default",
"authorization-manager-class-name" => "default",
"deep-copy-subject-mode" => false,
"default-callback-handler-class-name" => "default",
"identity-trust-manager-class-name" => "default",
"mapping-manager-class-name" => "default",
"subject-factory-class-name" => "default",
"security-domain" => {"other" => {
"authentication" => [{
"code" => "UsersRoles",
"flag" => "required"
}],
"cache-type" => "default"
}}
}
}
[standalone@localhost:9999 /] /subsystem=security:read-operation-names
{
"outcome" => "success",
"result" => [
"add",
"read-attribute",
"read-children-names",
"read-children-resources",
"read-children-types",
"read-operation-description",
"read-operation-names",
"read-resource",
"read-resource-description",
"validate-address",
"write-attribute"
]
}
{noformat}
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira