[jboss-jira] [JBoss JIRA] (WFCORE-1842) Support RBAC based on raw roles from an Identity
Darran Lofthouse (JIRA)
issues at jboss.org
Fri Sep 30 14:44:00 EDT 2016
[ https://issues.jboss.org/browse/WFCORE-1842?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13301261#comment-13301261 ]
Darran Lofthouse commented on WFCORE-1842:
------------------------------------------
+1 we removed useRealmRoles as it was confusing in the context of the legacy security realms - now the roles are available from an Elytron SecurityIdentity making it possible to enable a default 1:1 mapping makes sense again.
> Support RBAC based on raw roles from an Identity
> -------------------------------------------------
>
> Key: WFCORE-1842
> URL: https://issues.jboss.org/browse/WFCORE-1842
> Project: WildFly Core
> Issue Type: Feature Request
> Components: Domain Management, Security
> Reporter: Pedro Igor
> Assignee: Darran Lofthouse
>
> Currently, RBAC requires a static mapping between standard roles and raw roles from an identity.
> We should be able to use RBAC without necessarily forcing this static mapping and just consider the raw roles from the identity.
> This issue may be related with exposing {{org.jboss.as.controller.access.management.WritableAuthorizerConfiguration#useRealmRoles}} in the management model.
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jboss-jira
mailing list