[jboss-jira] [JBoss JIRA] (WFLY-9047) Elements defined in 'jboss-ejb-security_1_1.xsd' must be optional
Jörg Bäsner (JIRA)
issues at jboss.org
Tue Jul 4 11:00:00 EDT 2017
[ https://issues.jboss.org/browse/WFLY-9047?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jörg Bäsner updated WFLY-9047:
------------------------------
Steps to Reproduce:
Validate the following 'jboss-ejb3.xml' file:
{{<?xml version="1.0" encoding="UTF-8"?>}}
{{<jboss:ejb-jar xmlns:jboss="http://www.jboss.com/xml/ns/javaee" }}
{{ xmlns:jee="http://java.sun.com/xml/ns/javaee"}}
{{ xmlns:s="urn:security:1.1"}}
{{ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"}}
{{ xsi:schemaLocation="http://www.jboss.com/xml/ns/javaee http://www.jboss.org/j2ee/schema/jboss-ejb3-2_0.xsd}}
{{ http://java.sun.com/xml/ns/javaee http://www.jboss.org/j2ee/schema/jboss-ejb3-spec-2_0.xsd}}
{{ urn:security:1.1 http://www.jboss.org/schema/jbossas/jboss-ejb-security_1_1.xsd"}}
{{ version="3.1" impl-version="2.0">}}
{{ <jee:assembly-descriptor>}}
{{ <s:security>}}
{{ <jee:ejb-name>*</jee:ejb-name>}}
{{ <s:security-domain>SomeSecurityDomain</s:security-domain>}}
{{ <!-- }}
{{ <s:run-as-principal>SomeUser</s:run-as-principal>}}
{{ -->}}
{{ <s:missing-method-permissions-deny-access>true</s:missing-method-permissions-deny-access>}}
{{ </s:security>}}
{{ </jee:assembly-descriptor>}}
{{</jboss:ejb-jar>}}
was:
Validate the following 'jboss-ejb3.xml' file:
{{<?xml version="1.0" encoding="UTF-8"?>}}
{{<jboss:ejb-jar xmlns:jboss="http://www.jboss.com/xml/ns/javaee"
xmlns:jee="http://java.sun.com/xml/ns/javaee"
xmlns:s="urn:security:1.1"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.jboss.com/xml/ns/javaee http://www.jboss.org/j2ee/schema/jboss-ejb3-2_0.xsd
http://java.sun.com/xml/ns/javaee http://www.jboss.org/j2ee/schema/jboss-ejb3-spec-2_0.xsd
urn:security:1.1 http://www.jboss.org/schema/jbossas/jboss-ejb-security_1_1.xsd"
version="3.1" impl-version="2.0">
<jee:assembly-descriptor>
<s:security>
<jee:ejb-name>*</jee:ejb-name>
<s:security-domain>SomeSecurityDomain</s:security-domain>
<!--
<s:run-as-principal>SomeUser</s:run-as-principal>
-->
<s:missing-method-permissions-deny-access>true</s:missing-method-permissions-deny-access>
</s:security>
</jee:assembly-descriptor>
</jboss:ejb-jar>
}}
> Elements defined in 'jboss-ejb-security_1_1.xsd' must be optional
> -----------------------------------------------------------------
>
> Key: WFLY-9047
> URL: https://issues.jboss.org/browse/WFLY-9047
> Project: WildFly
> Issue Type: Bug
> Affects Versions: 11.0.0.Alpha1
> Reporter: Jörg Bäsner
> Assignee: Jason Greene
>
> Wildfly does not validate the 'jboss-ejb3.xml' file during startup, but when trying do validate a 'jboss-ejb3.xml' file externally the following elements are mandatory, even though they aren't:
> * {{security-domain}}
> * {{run-as-principal}}
> * {{missing-method-permissions-deny-access}}
> The [jboss-ejb-security_1_1.xsd|http://www.jboss.org/schema/jbossas/jboss-ejb-security_1_1.xsd] should be changed to have these elements optional.
> Like:
> {{
> ...
> <xs:element name="security-domain" type="xs:string" minOccurs="0"/>
> <xs:element name="run-as-principal" type="xs:string" minOccurs="0"/>
> <xs:element name="missing-method-permissions-deny-access" type="xs:boolean" minOccurs="0">
> ...
> }}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list