History
Log In
h
ome
b
rowse project
f
ind issues
Q
uick Search:
Learn more about
Quick Search
All Projects
:
Geronimo
: security
(Component)
Lead:
Alan Cabrera
Select:
Open Issues
Road Map
Change Log
Popular Issues
Road Map
Scope:
next 3 versions |
all versions
1.1.2
(
Release Notes
)
Progress:
15 of 15 issues have been resolved
v1.1.2 patch
GERONIMO-2294
FIXED
In security realm with multiple login modules, anything after the first is ignored
GERONIMO-1592
FIXED
Add NamedUPCredentialLoginModule to Console Realm Wizard
GERONIMO-1704
FIXED
Console security realm doesn't let you pick a JAR
GERONIMO-2350
FIXED
CertificateChainCallbackHandler willfully conceals causes of failure
GERONIMO-2285
FIXED
Console Show Plan screens have bad EAR plan in advice
GERONIMO-2436
FIXED
FileKeystoreInstance.generateKeyPair() should check if the keystore is loaded
GERONIMO-2280
FIXED
FileKeystoreInstance.getKeyManager() fails when there is more than one privatekey in the store
GERONIMO-2443
FIXED
Import CA reply should match the public key in the keystore with that in the certificate from CA.
GERONIMO-2267
FIXED
RepeatedFailureLockoutLoginModule: Does not function
GERONIMO-2695
FIXED
Requests using Non-secure HTTP connections cannot access unsecured web resources
GERONIMO-2431
FIXED
generateCSR reverses the attribute sequence in subject name
GERONIMO-2275
FIXED
login-domain-principal or realm-principal in default-principal cause deployment errors
GERONIMO-2274
FIXED
realm-principal does not work in web app security
GERONIMO-2339
DUPLICATE
Empty auth-constraint tag in web app security-constraint does not prevent access to resource
GERONIMO-2266
DUPLICATE
FileAuditLoginModule: Does not log failed attempts
1.1.x
(
Release Notes
)
Progress:
2 of 2 issues have been resolved
Bucket for following patch
GERONIMO-2268
DUPLICATE
Security Realm with more than one LoginModule does not function as expected
GERONIMO-1602
CANNOT REPRODUCE
Switching from Tomcat causes error in JAAS module: "Unable to instantiate login module"
1.2
(
Release Notes
)
Progress:
39 of 39 issues have been resolved
GERONIMO-2294
FIXED
In security realm with multiple login modules, anything after the first is ignored
GERONIMO-2295
FIXED
Web app security constraint ignored if url-pattern doesn't match servlet mapping exactly
GERONIMO-1592
FIXED
Add NamedUPCredentialLoginModule to Console Realm Wizard
GERONIMO-1704
FIXED
Console security realm doesn't let you pick a JAR
GERONIMO-1135
FIXED
Keystore password in System.properties
GERONIMO-2713
FIXED
LDAP Realm fails to test and deploy
GERONIMO-2560
FIXED
Realm added using SecurityRealm portlet does not work
GERONIMO-2234
FIXED
User can lock the default keystore without warning, making jetty server unusable
GERONIMO-1585
FIXED
Web app security on /* causes deployment exception
GERONIMO-1474
FIXED
Cross site scripting vulnerabilites
GERONIMO-1477
FIXED
JMX debug tool should not be loaded in the supplied config.xml
GERONIMO-1503
WON'T FIX
keystore generated by KeyStore portlet could not be used to add either Jetty or Tomcat HTTPS Listeners
GERONIMO-2252
FIXED
A locked key in a keystore can never be unlocked.
GERONIMO-2413
FIXED
Add a Certification Authority (CA) portlet to Geronimo console
GERONIMO-2504
FIXED
Allow all read-only operations on KeystoreInstance to be available to services
GERONIMO-1473
FIXED
ApplicationPolicyConfigurationManager doesn't clear permissions on startup
GERONIMO-2350
FIXED
CertificateChainCallbackHandler willfully conceals causes of failure
GERONIMO-2285
FIXED
Console Show Plan screens have bad EAR plan in advice
GERONIMO-2436
FIXED
FileKeystoreInstance.generateKeyPair() should check if the keystore is loaded
GERONIMO-2280
FIXED
FileKeystoreInstance.getKeyManager() fails when there is more than one privatekey in the store
GERONIMO-2587
FIXED
FileKeystoreInstance.loadKeystoreData() results in inconsistent state if wrong password is supplied
GERONIMO-2443
FIXED
Import CA reply should match the public key in the keystore with that in the certificate from CA.
GERONIMO-2585
FIXED
KeystorePortlet: Lock keystore throws NullPointerException
GERONIMO-1672
FIXED
Module migration to Maven2: security
GERONIMO-2002
FIXED
OpenEJB CORBA SSL should use Keystore GBean
GERONIMO-931
FIXED
Rename administrative security realm
GERONIMO-2267
FIXED
RepeatedFailureLockoutLoginModule: Does not function
GERONIMO-2695
FIXED
Requests using Non-secure HTTP connections cannot access unsecured web resources
GERONIMO-1880
FIXED
To Allow configurable password digests during REALM Deployment.
GERONIMO-1563
FIXED
[RTC] Make the JACC implementation pluggable
GERONIMO-2431
FIXED
generateCSR reverses the attribute sequence in subject name
GERONIMO-2275
FIXED
login-domain-principal or realm-principal in default-principal cause deployment errors
GERONIMO-2274
FIXED
realm-principal does not work in web app security
GERONIMO-2339
DUPLICATE
Empty auth-constraint tag in web app security-constraint does not prevent access to resource
GERONIMO-2266
DUPLICATE
FileAuditLoginModule: Does not log failed attempts
GERONIMO-2268
DUPLICATE
Security Realm with more than one LoginModule does not function as expected
GERONIMO-1819
INVALID
Port SQL realm fix from 1.1 to HEAD
GERONIMO-2279
FIXED
FileKeyStoreInstance: Does not save keyPasswords after removing an entry
GERONIMO-1489
FIXED
Minor fixes/updates to jUDDI webapp and Tomcat config
Preset Filters
-
All
-
Outstanding
-
Unscheduled
-
Most important
-
Resolved recently
-
Added recently
-
Updated recently
Component Summary
Open
29
11%
Reopened
1
Resolved
28
11%
Closed
197
77%
Open Issues
By Priority
Blocker
1
3%
Major
24
80%
Minor
5
17%
By Assignee
Alan Cabrera
1
3%
David Jencks
3
10%
Ivan
1
3%
Unassigned
25
83%
