[jboss-jira] [JBoss JIRA] (AS7-1298) JBoss AS 7 doesn't appear to support container-managed security via web.xml and jboss-web.xml
Darran Lofthouse (JIRA)
jira-events at lists.jboss.org
Thu Apr 12 12:16:48 EDT 2012
[ https://issues.jboss.org/browse/AS7-1298?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Darran Lofthouse updated AS7-1298:
----------------------------------
Fix Version/s: (was: 7.1.2.Final-redhat1)
> JBoss AS 7 doesn't appear to support container-managed security via web.xml and jboss-web.xml
> ---------------------------------------------------------------------------------------------
>
> Key: AS7-1298
> URL: https://issues.jboss.org/browse/AS7-1298
> Project: Application Server 7
> Issue Type: Feature Request
> Components: Documentation
> Affects Versions: 7.0.0.Final
> Environment: n/a
> Reporter: Craig Ringer
> Assignee: Darran Lofthouse
>
> There's no documentation for container-managed security in JBoss AS 7, and the schema for the main jboss config files and jboss-web.xml don't suggest any configuration mechanisms for JAAS realms, principal-to-user/group mappings, etc.
> This is a significant limitation for apps porting from Glassfish 3, which expect to be able to access the current security principal from JNDI or inject it, and expect to be able to declare container-controlled access to particular URLs and different HTTP methods in web.xml.
> Documenting this limitation in AS 7.0.0 would be a big improvement and would save porting time and hassle. Implementing support in a future version would, of course, be ideal.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list