[jboss-jira] [JBoss JIRA] (WFLY-12202) Need to use principal-transformer in aggregate-realm in between authentication-realm and authorization-realm
Ashley Abdel-Sayed (Jira)
issues at jboss.org
Wed Jun 19 09:15:00 EDT 2019
[ https://issues.jboss.org/browse/WFLY-12202?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Ashley Abdel-Sayed updated WFLY-12202:
--------------------------------------
Git Pull Request: https://github.com/wildfly/wildfly/pull/12371
> Need to use principal-transformer in aggregate-realm in between authentication-realm and authorization-realm
> ------------------------------------------------------------------------------------------------------------
>
> Key: WFLY-12202
> URL: https://issues.jboss.org/browse/WFLY-12202
> Project: WildFly
> Issue Type: Feature Request
> Components: Security
> Reporter: Ashley Abdel-Sayed
> Assignee: Ashley Abdel-Sayed
> Priority: Major
>
> It is requirement to use principal-transformer in aggregate-realm in between authentication-realm and authorization-realm .
> --------------------------------------
> <security-domain name="TestDomain" default-realm="TestAggRealm" permission-mapper="default-permission-mapper" pre-realm-principal-transformer="test-transformer" security-event-listener="local-audit">
> <realm name="TestAggRealm" role-decoder="from-roles-attribute"/>
> </security-domain>
> .
> .
> <aggregate-realm name="TestAggRealm" authentication-realm="TestLdapRealm" authorization-realm="Test_Auth_LdapRealm"/>
> --------------------------------------
> I think to achieve this there need to be something like "mid-realm-principal-transformer" in <aggregate-realm> only .
--
This message was sent by Atlassian Jira
(v7.12.1#712002)
More information about the jboss-jira
mailing list