[jboss-jira] [JBoss JIRA] Reopened: (JBAS-8159) Secure jmx-remoting.sar

[Jason Greene (JIRA)]

     [ https://issues.jboss.org/browse/JBAS-8159?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Jason Greene reopened JBAS-8159:
--------------------------------



Due to feedback from the community, I have split the AS7 and AS6 projects and reopened all unscheduled AS6 issues that are a year or less old. This will make it easier community members to find and work on them.

Future releases beyond 6.1 can be done provided a community member steps up to coordinate them.

> Secure jmx-remoting.sar
> -----------------------
>
>                 Key: JBAS-8159
>                 URL: https://issues.jboss.org/browse/JBAS-8159
>             Project: Legacy JBoss Application Server 6 
>          Issue Type: Feature Request
>      Security Level: Public(Everyone can see) 
>          Components: JMX
>    Affects Versions: JBossAS-5.1.0.GA
>         Environment: JBossAS 5.1.0 GA
>            Reporter: Xavier MOGHRABI
>            Assignee: Scott Marlow
>              Labels: jmx, remoting
>             Fix For: No Release
>
>         Attachments: jboss-service.xml, jbossas-jmx-remoting-src.jar, jmx-remoting-src.zip, jmx-remoting-src.zip
>
>
> JBossAS 5.1.0 GA provides jmx-remoting.sar compliant to JSR 160. Unfortunately the service is not secured and doesn't provide any way to secure it.
> However the JMX API provides several mechanisms allowing authentication and authorization. Authentication can easily done against a login-module.
> A forwarder can be implemented to extend the authorization against a role based mechanism.

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira