Triplesec
  1. Triplesec
  2. DIRTSEC-1

Start toward using java.security.Permission

    Details

    • Type: Bug Bug
    • Status: Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: None
    • Labels:
      None

      Description

      Opening this issue for visibility of the work I'm proposing on the dev list for making triplesec useable as a JACC provider.

      1. DIRTSEC-1-2.patch
        260 kB
        David Jencks
      2. DIR-199.patch
        79 kB
        David Jencks
      3. StringPermission.java
        6 kB
        David Jencks

        Activity

        David Jencks created issue -
        Hide
        David Jencks added a comment -

        Supplying guardian-api/src/main/java/org/safehaus/triplesec/guardian/StringPermission.java as a separate file since svn bugs seem to prevent making a diff.

        Show
        David Jencks added a comment - Supplying guardian-api/src/main/java/org/safehaus/triplesec/guardian/StringPermission.java as a separate file since svn bugs seem to prevent making a diff.
        David Jencks made changes -
        Field Original Value New Value
        Attachment StringPermission.java [ 12347623 ]
        Attachment DIR-199.patch [ 12347622 ]
        Alex Karasulu made changes -
        Project Directory [ 10400 ] Triplesec [ 12310592 ]
        Key DIR-199 DIRTSEC-1
        Alex Karasulu made changes -
        Summary TRIPLESEC start toward using java.security.Permission Start toward using java.security.Permission
        Hide
        David Jencks added a comment -

        Attached patch INCLUDES all the changes in DIRTSEC-2-2.patch.

        Enclosed patch completes move from triplesec Permissions class to java.security.Permissions class. It also adds denials Permissions to Role. I added a couple of simple tests of the new behavior of denied permissions, but more would be good.

        Remaining steps for use as a jacc provider:

        • figure out how application name and policyContextId and security domain and Subject's Principal relate
        • figure out how to store other kinds of permissions in ldap
        Show
        David Jencks added a comment - Attached patch INCLUDES all the changes in DIRTSEC-2 -2.patch. Enclosed patch completes move from triplesec Permissions class to java.security.Permissions class. It also adds denials Permissions to Role. I added a couple of simple tests of the new behavior of denied permissions, but more would be good. Remaining steps for use as a jacc provider: figure out how application name and policyContextId and security domain and Subject's Principal relate figure out how to store other kinds of permissions in ldap
        David Jencks made changes -
        Attachment DIRTSEC-1-2.patch [ 12347769 ]
        Hide
        David Jencks added a comment -

        Everything still relevant in this patch has been applied or redone in sandbox/triplesec-jacc2.

        Show
        David Jencks added a comment - Everything still relevant in this patch has been applied or redone in sandbox/triplesec-jacc2.
        David Jencks made changes -
        Status Open [ 1 ] Resolved [ 5 ]
        Resolution Fixed [ 1 ]
        Emmanuel Lecharny made changes -
        Status Resolved [ 5 ] Closed [ 6 ]
        Transition Time In Source Status Execution Times Last Executer Last Execution Date
        Open Open Resolved Resolved
        18d 18h 1 David Jencks 08/Jan/07 19:04
        Resolved Resolved Closed Closed
        848d 21h 28m 1 Emmanuel Lecharny 06/May/09 17:33

          People

          • Assignee:
            Alex Karasulu
            Reporter:
            David Jencks
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development