Issue Details (XML | Word | Printable)

Key: JS2-27
Type: Improvement Improvement
Status: Resolved Resolved
Resolution: Fixed
Priority: Major Major
Assignee: Vivek Kumar
Reporter: Ate Douma
Votes: 0
Watchers: 0
Operations

If you were logged in you would be able to see more operations.
Jetspeed 2

Allow disable of Groups and Roles

Created: 13/May/04 08:52 PM   Updated: 12/Nov/08 02:52 PM
Return to search
Component/s: Security
Affects Version/s: 2.0-FINAL, 2.1
Fix Version/s: 2.2.0

Time Tracking:
Not Specified

Resolution Date: 12/Nov/08 02:52 PM


 Description  « Hide
In J1 a user can be disabled but not a role or a group.
I guess disabling users will be supported by J2 to allow migration from J1.

I would also like to be able to disable Roles and Groups.
It would allow for really advanced access management in J2 without it
getting in the way for who doesn't need it (could even be *hidden* through configuration if needed).

To have this standard available in J2 would be very nice for most large J2 implementations. Implementation itself would be quite easy and the gain enormous.

Adding a boolean disabled attribute to o.a.j.security.BasePrincipal
would do it (and of course BasePrincipalImpl and the object
model behind it). The LoginModule, UserManager, GroupManager
and RoleManager then can decide on this attribute if the Principal may
be used (in isUserInRole(), isGroupInRole(), etc.)

Original discussion about this issue:
  http://nagoya.apache.org/eyebrowse/ReadMsg?listId=22&msgNo=13265

 All   Comments   Work Log   Change History   Subversion Commits      Sort Order: Ascending order - Click to sort in descending order
Ate Douma made changes - 19/Oct/04 09:50 PM
Field Original Value New Value
Status Open [ 1 ] Closed [ 6 ]
Resolution Duplicate [ 3 ]
Ate Douma made changes - 26/Oct/05 10:23 PM
Resolution Duplicate [ 3 ]
Status Closed [ 6 ] Reopened [ 4 ]
Assignee Ate Douma [ adouma ]
Ate Douma made changes - 26/Oct/05 10:24 PM
Description In J1 a user can be disabled but not a role or a group.
I guess disabling users will be supported by J2 to allow migration from J1.

I would also like to be able to disable Roles and Groups.
It would allow for really advanced access management in J2 without it
getting in the way for who doesn't need it (could even be *hidden* through configuration if needed).

To have this standard available in J2 would be very nice for most large J2 implementations. Implementation itself would be quite easy and the gain enormous.

Adding a boolean disabled attribute to o.a.j.security.BasePrincipal
would do it (and of course BasePrincipalImpl and the object
model behind it). The LoginModule, UserManager, GroupManager
and RoleManager then can decide on this attribute if the Principal may
be used (in isUserInRole(), isGroupInRole(), etc.)

Original discussion about this issue:
  http://nagoya.apache.org/eyebrowse/ReadMsg?listId=22&msgNo=13265 		In J1 a user can be disabled but not a role or a group.
I guess disabling users will be supported by J2 to allow migration from J1.

I would also like to be able to disable Roles and Groups.
It would allow for really advanced access management in J2 without it
getting in the way for who doesn't need it (could even be *hidden* through configuration if needed).

To have this standard available in J2 would be very nice for most large J2 implementations. Implementation itself would be quite easy and the gain enormous.

Adding a boolean disabled attribute to o.a.j.security.BasePrincipal
would do it (and of course BasePrincipalImpl and the object
model behind it). The LoginModule, UserManager, GroupManager
and RoleManager then can decide on this attribute if the Principal may
be used (in isUserInRole(), isGroupInRole(), etc.)

Original discussion about this issue:
  http://nagoya.apache.org/eyebrowse/ReadMsg?listId=22&msgNo=13265
Affects Version/s 2.0-dev/cvs [ 10598 ]
Priority Minor [ 4 ] Major [ 3 ]
Fix Version/s 2.0-FINAL [ 10940 ]
Environment
Affects Version/s 2.0-FINAL [ 10940 ]
Ate Douma made changes - 07/Dec/05 04:25 PM
Affects Version/s 2.0-FINAL [ 10940 ]
Affects Version/s 2.0-POST [ 12310617 ]
Ate Douma made changes - 07/Dec/05 04:51 PM
Fix Version/s 2.0-POST [ 12310617 ]
Affects Version/s 2.0-POST [ 12310617 ]
Fix Version/s 2.0-FINAL [ 10940 ]
Affects Version/s 2.0-FINAL [ 10940 ]
Ate Douma made changes - 16/Sep/06 01:34 PM
Fix Version/s 2.1 [ 12310617 ]
Ate Douma made changes - 16/Feb/07 07:13 PM
Affects Version/s 2.1 [ 12310617 ]
Fix Version/s 2.2-dev [ 12312318 ]
Ate Douma made changes - 20/Oct/08 01:27 PM
Assignee Ate Douma [ adouma ] Vivek Kumar [ firevelocity ]
Vivek Kumar made changes - 12/Nov/08 02:52 PM
Resolution Fixed [ 1 ]
Status Reopened [ 4 ] Resolved [ 5 ]

Powered by a free Atlassian JIRA open source license for Apache Software Foundation. Try JIRA - bug tracking software for your team.
Atlassian JIRA the Professional Issue Tracker. (Enterprise Edition, Version: 3.13.2-#335) - Bug/feature request - Atlassian news - Contact Administrators