[jboss-jira] [JBoss JIRA] Closed: (JBAS-7881) JBossWebRealm needs a flag to bypass the JBoss Security Authorization Framework and rely on only RealmBase authorization
Anil Saldhana (JIRA)
jira-events at lists.jboss.org
Wed Mar 31 14:21:37 EDT 2010
[ https://jira.jboss.org/jira/browse/JBAS-7881?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Anil Saldhana closed JBAS-7881.
-------------------------------
Resolution: Done
===============
anil at localhost:~/jboss-6.0/jboss-head/tomcat/src/main/java/org/jboss/web/tomcat/security$ svn ci -m "JBAS-7881: flag to bypass jboss authz and rely on Tomcat realmbase authz only, if the admin chooses, for performance reasons"
Sending security/JBossWebRealm.java
Transmitting file data .
Committed revision 103354.
==================
> JBossWebRealm needs a flag to bypass the JBoss Security Authorization Framework and rely on only RealmBase authorization
> ------------------------------------------------------------------------------------------------------------------------
>
> Key: JBAS-7881
> URL: https://jira.jboss.org/jira/browse/JBAS-7881
> Project: JBoss Application Server
> Issue Type: Feature Request
> Security Level: Public(Everyone can see)
> Components: Web (Tomcat) service
> Affects Versions: JBossAS-6.0.0.M2
> Reporter: Anil Saldhana
> Assignee: Anil Saldhana
> Fix For: JBossAS-6.0.0.M3
>
>
> JBoss Security Authorization Framework is needed if XACML and JACC are needed. In the absence of these needs, it should be configurable to just utilize the realmbase authorization decisions to improve performance.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list