[security-dev] JPA is a can of worms for Wildfly startup
Anil Saldhana
Anil.Saldhana at redhat.com
Wed Aug 7 12:03:34 EDT 2013
Fernando,
code is merged into the v2.1.8 workspace at
https://github.com/picketlink2/federation
Pull: https://github.com/picketlink2/federation/pull/188
Testing: https://gist.github.com/anilsaldhana/70b61759143f2fd134dc
I hope you can test it.
Feedback welcome.
https://github.com/picketlink2/federation/blob/master/picketlink-core/src/main/java/org/picketlink/identity/federation/core/sts/registry/AbstractJDBCRegistry.java
https://github.com/picketlink2/federation/blob/master/picketlink-core/src/main/java/org/picketlink/identity/federation/core/sts/registry/JDBCTokenRegistry.java
https://github.com/picketlink2/federation/blob/master/picketlink-core/src/main/java/org/picketlink/identity/federation/core/sts/registry/JDBCRevocationRegistry.java
Regards,
Anil
On 08/06/2013 04:13 PM, Fernando Ribeiro wrote:
> Great, I have updated PLINK2-97 and asked the WF team what to do with
> WFLY-1691. Regards.
>
>
> On Tue, Aug 6, 2013 at 6:11 PM, Anil Saldhana
> <Anil.Saldhana at redhat.com <mailto:Anil.Saldhana at redhat.com>> wrote:
>
> Fernando,
> finished the code. I am going to test with a DB on my laptop
> before checking.
>
> Regards,
> Anil
>
>
> On 08/06/2013 03:52 PM, Fernando Ribeiro wrote:
>> Anil,
>>
>> I surely can, will have two POC environments (PL cluster + MySQL
>> cluster) for many weeks.
>>
>> Thank you very much for the attention to the issue, I really
>> appreciated it.
>>
>> Regards,
>>
>>
>> On Tue, Aug 6, 2013 at 12:54 PM, Anil Saldhana
>> <Anil.Saldhana at redhat.com <mailto:Anil.Saldhana at redhat.com>> wrote:
>>
>> https://issues.jboss.org/browse/PLINK2-101
>> https://issues.jboss.org/browse/PLINK2-102
>>
>> I hope Fernando can help test this. :)
>>
>> On 08/06/2013 10:30 AM, Anil Saldhana wrote:
>>
>> Hi All,
>> http://lists.jboss.org/pipermail/wildfly-dev/2013-August/000574.html
>> (thanks to Jason, Bill and Scott Marlow for the discussion)
>>
>> Jason has provided some objections to the JPA usage in
>> PicketLink that
>> can affect Wildfly boot time performance. He had raised
>> this concern
>> last time for the JPAIdentityStore implementation in
>> PicketLink v2.5
>> which we have been trying to mitigate via the
>> implementation of a JDBC
>> driven Identity Store.
>>
>> The discussion happening in the thread above however is
>> for the
>> JPABasedTokenRegistry and JPABasedRevocationRegistry part
>> of v2.1.x
>> which predates PicketLink v2.5
>> https://github.com/picketlink2/federation/blob/master/picketlink-core/src/main/java/org/picketlink/identity/federation/core/sts/registry/JPABasedTokenRegistry.java
>> https://github.com/picketlink2/federation/blob/master/picketlink-core/src/main/java/org/picketlink/identity/federation/core/sts/registry/JPABasedRevocationRegistry.java
>>
>> I think we should also implement a straight JDBC based
>> token registry
>> and revocation registry to avoid the Wildfly boot drag.
>>
>> Regards,
>> Anil
>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/security-dev/attachments/20130807/876a716d/attachment.html
More information about the security-dev
mailing list