[JBoss JIRA] (ELY-446) Additional fields on SecurityIdentity

Friday, 25 March 2016

    [
https://issues.jboss.org/browse/ELY-446?page=com.atlassian.jira.plugin.sy...
] 

David Lloyd commented on ELY-446:
---------------------------------

During the F2F it was thought that perhaps some of this information belongs in other
contexts.  As long as the PermissionMapper or authorization policy can access these other
objects, it should be able to make accurate and correct authorization decisions.  We might
want to provide standard contexts of these types though.

...
 Additional fields on SecurityIdentity
 -------------------------------------

                 Key: ELY-446
                 URL: https://issues.jboss.org/browse/ELY-446
             Project: WildFly Elytron
          Issue Type: Enhancement
          Components: API / SPI
            Reporter: David Lloyd
            Assignee: David Lloyd

 The following useful properties could be added to SecurityIdentity:
 * Identity creation time (the time when the identity itself is created, whether by login
or by run-as)
 * Authentication information, including:
 ** Login timestamp (the time of the original authentication)
 ** Login mechanism & kind (SASL/HTTP/TLS etc.)
 ** Login protocol (HTTP/Remoting/etc.) incl. enclosing TLS information if any
 * Authentication identity information, including:
 ** Original authentication name
 ** Authentication forwarding credential(s)
 * Connection circumstances:
 ** Peer and local address
 ** Current invocation protocol 

--
This message was sent by Atlassian JIRA
(v6.4.11#64026)

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006