[jboss-jira] [JBoss JIRA] Commented: (AS7-1781) Provide management use cases and operations for the security subsystem
Marcus Moyses (JIRA)
jira-events at lists.jboss.org
Tue Sep 27 15:07:27 EDT 2011
[ https://issues.jboss.org/browse/AS7-1781?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12630861#comment-12630861 ]
Marcus Moyses commented on AS7-1781:
------------------------------------
I guess we could have these operations somehow included in the management console:
- List security domains
for example:
[standalone at localhost:9999 /] ls subsystem=security/security-domain
other
- List cached principals for a domain
for example:
[standalone at localhost:9999 /] cd subsystem=security/security-domain=other
[standalone at localhost:9999 security-domain=other] :list-cached-principals
{
"outcome" => "success",
"result" => []
}
- Flush cached principals for a domain (all entries or single entry)
for example:
[standalone at localhost:9999 /] cd subsystem=security/security-domain=other
[standalone at localhost:9999 security-domain=other] :flush-cache
{"outcome" => "success"}
or for single entry
[standalone at localhost:9999 security-domain=other] :flush-cache(principal=admin)
{"outcome" => "success"}
- Remove security domain
for example:
[standalone at localhost:9999 /] cd subsystem=security/security-domain=other
[standalone at localhost:9999 security-domain=other] :remove
{"outcome" => "success"}
- Add security domain
for example:
[standalone at localhost:9999 /] /subsystem=security/security-domain=other:add(cache-type=default,authentication=[{"code"=>"UsersRoles","flag"=>"required","module-options"=>[("usersProperties"=>"users.properties"),("rolesProperties"=>"roles.properties")]}])
This last operation is more complicated as we need to allow all subtypes described in the xsd under the security domain (authentication, authorization, etc) each with their own attributes and as many module options as the user wants. I could provide a full example if needed.
> Provide management use cases and operations for the security subsystem
> ----------------------------------------------------------------------
>
> Key: AS7-1781
> URL: https://issues.jboss.org/browse/AS7-1781
> Project: Application Server 7
> Issue Type: Feature Request
> Components: Security
> Reporter: Heiko Braun
> Assignee: Marcus Moyses
> Fix For: 7.1.0.Beta1
>
>
> I cannot identify the use cases nor specific management operations on the current security subsystem:
> {noformat}
> [standalone at localhost:9999 /] /subsystem=security:read-resource(recursive=true)
> {
> "outcome" => "success",
> "result" => {
> "audit-manager-class-name" => "default",
> "authentication-manager-class-name" => "default",
> "authorization-manager-class-name" => "default",
> "deep-copy-subject-mode" => false,
> "default-callback-handler-class-name" => "default",
> "identity-trust-manager-class-name" => "default",
> "mapping-manager-class-name" => "default",
> "subject-factory-class-name" => "default",
> "security-domain" => {"other" => {
> "authentication" => [{
> "code" => "UsersRoles",
> "flag" => "required"
> }],
> "cache-type" => "default"
> }}
> }
> }
> [standalone at localhost:9999 /] /subsystem=security:read-operation-names
> {
> "outcome" => "success",
> "result" => [
> "add",
> "read-attribute",
> "read-children-names",
> "read-children-resources",
> "read-children-types",
> "read-operation-description",
> "read-operation-names",
> "read-resource",
> "read-resource-description",
> "validate-address",
> "write-attribute"
> ]
> }
> {noformat}
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list