[jboss-jira] [JBoss JIRA] (ELY-446) Additional fields on SecurityIdentity
David Lloyd (JIRA)
issues at jboss.org
Fri Mar 25 09:40:00 EDT 2016
[ https://issues.jboss.org/browse/ELY-446?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13182351#comment-13182351 ]
David Lloyd commented on ELY-446:
---------------------------------
During the F2F it was thought that perhaps some of this information belongs in other contexts. As long as the PermissionMapper or authorization policy can access these other objects, it should be able to make accurate and correct authorization decisions. We might want to provide standard contexts of these types though.
> Additional fields on SecurityIdentity
> -------------------------------------
>
> Key: ELY-446
> URL: https://issues.jboss.org/browse/ELY-446
> Project: WildFly Elytron
> Issue Type: Enhancement
> Components: API / SPI
> Reporter: David Lloyd
> Assignee: David Lloyd
>
> The following useful properties could be added to SecurityIdentity:
> * Identity creation time (the time when the identity itself is created, whether by login or by run-as)
> * Authentication information, including:
> ** Login timestamp (the time of the original authentication)
> ** Login mechanism & kind (SASL/HTTP/TLS etc.)
> ** Login protocol (HTTP/Remoting/etc.) incl. enclosing TLS information if any
> * Authentication identity information, including:
> ** Original authentication name
> ** Authentication forwarding credential(s)
> * Connection circumstances:
> ** Peer and local address
> ** Current invocation protocol
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jboss-jira
mailing list