You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@geronimo.apache.org by "Anita Kulshreshtha (JIRA)" <ji...@apache.org> on 2007/09/06 15:44:32 UTC
[jira] Created: (GERONIMO-3456) Make MEJB security configurable
Make MEJB security configurable
-------------------------------
Key: GERONIMO-3456
URL: https://issues.apache.org/jira/browse/GERONIMO-3456
Project: Geronimo
Issue Type: Bug
Security Level: public (Regular issues)
Components: OpenEJB, security
Affects Versions: 2.0.1
Environment: All
Reporter: Anita Kulshreshtha
Assignee: Anita Kulshreshtha
Priority: Critical
Fix For: 2.0.2
Currently access to MEJB is not controlled. Add configurable security for MEJB.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (GERONIMO-3456) Make MEJB security configurable
Posted by "Anita Kulshreshtha (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-3456?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Anita Kulshreshtha updated GERONIMO-3456:
-----------------------------------------
Attachment: mejb-war-2.1-SNAPSHOT.war
- The app mejb-war-2.1-SNAPSHOT.war is an app to access MEJB
> Make MEJB security configurable
> -------------------------------
>
> Key: GERONIMO-3456
> URL: https://issues.apache.org/jira/browse/GERONIMO-3456
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: OpenEJB, security
> Affects Versions: 2.0.1, 2.1
> Environment: All
> Reporter: Anita Kulshreshtha
> Assignee: Anita Kulshreshtha
> Priority: Critical
> Fix For: 2.0.2, 2.1
>
> Attachments: configs.patch, mejb-ear-2.1-SNAPSHOT.ear, mejb-ejb-2.1-SNAPSHOT.jar, mejb-war-2.1-SNAPSHOT.war, MEJB.java, mejb.patch
>
>
> Currently access to MEJB is not controlled. Add configurable security for MEJB.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (GERONIMO-3456) Make MEJB security configurable
Posted by "Vamsavardhana Reddy (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-3456?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12532010 ]
Vamsavardhana Reddy commented on GERONIMO-3456:
-----------------------------------------------
Rev 579681 in branches\2.0.
> Make MEJB security configurable
> -------------------------------
>
> Key: GERONIMO-3456
> URL: https://issues.apache.org/jira/browse/GERONIMO-3456
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: OpenEJB, security
> Affects Versions: 2.0.1, 2.1
> Environment: All
> Reporter: Anita Kulshreshtha
> Assignee: Anita Kulshreshtha
> Priority: Critical
> Fix For: 2.0.2, 2.1
>
> Attachments: configs.diff, configs.patch, configs.patch, GERONIMO-3456.patch, mejb-ear-2.1-SNAPSHOT.ear, mejb-ejb-2.1-SNAPSHOT.jar, mejb-war-2.1-SNAPSHOT.war, mejb.diff, MEJB.java, mejb.patch
>
>
> Currently access to MEJB is not controlled. Add configurable security for MEJB.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (GERONIMO-3456) Make MEJB security configurable
Posted by "Anita Kulshreshtha (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-3456?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12529723 ]
Anita Kulshreshtha commented on GERONIMO-3456:
----------------------------------------------
The openejb deployer had to be modified to deploy applications without starting the openejb configuration. Once the patches for openejb
and openejb-builder attached to [1] are committed, I will commit this work.
[1] http://issues.apache.org/jira/browse/GERONIMO-3481
> Make MEJB security configurable
> -------------------------------
>
> Key: GERONIMO-3456
> URL: https://issues.apache.org/jira/browse/GERONIMO-3456
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: OpenEJB, security
> Affects Versions: 2.0.1, 2.1
> Environment: All
> Reporter: Anita Kulshreshtha
> Assignee: Anita Kulshreshtha
> Priority: Critical
> Fix For: 2.0.2, 2.1
>
> Attachments: configs.diff, configs.patch, configs.patch, mejb-ear-2.1-SNAPSHOT.ear, mejb-ejb-2.1-SNAPSHOT.jar, mejb-war-2.1-SNAPSHOT.war, mejb.diff, MEJB.java, mejb.patch
>
>
> Currently access to MEJB is not controlled. Add configurable security for MEJB.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (GERONIMO-3456) Make MEJB security configurable
Posted by "Anita Kulshreshtha (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-3456?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Anita Kulshreshtha updated GERONIMO-3456:
-----------------------------------------
Attachment: configs.patch
- config.patch (created from configs dir) for building mejb config
> Make MEJB security configurable
> -------------------------------
>
> Key: GERONIMO-3456
> URL: https://issues.apache.org/jira/browse/GERONIMO-3456
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: OpenEJB, security
> Affects Versions: 2.0.1, 2.1
> Environment: All
> Reporter: Anita Kulshreshtha
> Assignee: Anita Kulshreshtha
> Priority: Critical
> Fix For: 2.0.2, 2.1
>
> Attachments: configs.patch, configs.patch, mejb-ear-2.1-SNAPSHOT.ear, mejb-ejb-2.1-SNAPSHOT.jar, mejb-war-2.1-SNAPSHOT.war, MEJB.java, mejb.patch
>
>
> Currently access to MEJB is not controlled. Add configurable security for MEJB.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (GERONIMO-3456) Make MEJB security configurable
Posted by "Anita Kulshreshtha (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-3456?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Anita Kulshreshtha updated GERONIMO-3456:
-----------------------------------------
Attachment: mejb.diff
The mejb.patch also has duplicates. please apply mejb.diff to applications dir
> Make MEJB security configurable
> -------------------------------
>
> Key: GERONIMO-3456
> URL: https://issues.apache.org/jira/browse/GERONIMO-3456
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: OpenEJB, security
> Affects Versions: 2.0.1, 2.1
> Environment: All
> Reporter: Anita Kulshreshtha
> Assignee: Anita Kulshreshtha
> Priority: Critical
> Fix For: 2.0.2, 2.1
>
> Attachments: configs.diff, configs.patch, configs.patch, mejb-ear-2.1-SNAPSHOT.ear, mejb-ejb-2.1-SNAPSHOT.jar, mejb-war-2.1-SNAPSHOT.war, mejb.diff, MEJB.java, mejb.patch
>
>
> Currently access to MEJB is not controlled. Add configurable security for MEJB.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (GERONIMO-3456) Make MEJB security configurable
Posted by "Anita Kulshreshtha (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-3456?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12530423 ]
Anita Kulshreshtha commented on GERONIMO-3456:
----------------------------------------------
committed in rev579616. The default security settings are -
- "admin" - read access
- To get R/W access create a "mejb-admin" group (GeronimoGroupPrincipal). Any user in this group will have R/W access
> Make MEJB security configurable
> -------------------------------
>
> Key: GERONIMO-3456
> URL: https://issues.apache.org/jira/browse/GERONIMO-3456
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: OpenEJB, security
> Affects Versions: 2.0.1, 2.1
> Environment: All
> Reporter: Anita Kulshreshtha
> Assignee: Anita Kulshreshtha
> Priority: Critical
> Fix For: 2.0.2, 2.1
>
> Attachments: configs.diff, configs.patch, configs.patch, GERONIMO-3456.patch, mejb-ear-2.1-SNAPSHOT.ear, mejb-ejb-2.1-SNAPSHOT.jar, mejb-war-2.1-SNAPSHOT.war, mejb.diff, MEJB.java, mejb.patch
>
>
> Currently access to MEJB is not controlled. Add configurable security for MEJB.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (GERONIMO-3456) Make MEJB security configurable
Posted by "Anita Kulshreshtha (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-3456?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Anita Kulshreshtha updated GERONIMO-3456:
-----------------------------------------
Attachment: mejb-ear-2.1-SNAPSHOT.ear
MEJB.java
I have attached MEJB for review. It can be deployed as an ear or stand alone ejb module. I have tested it by deploying it as an ear on trunk. The ear file is also attached. The ear contains an extra web part that is meant only for testing. By default the "mejbuser" role is mapped to "admin" .
> Make MEJB security configurable
> -------------------------------
>
> Key: GERONIMO-3456
> URL: https://issues.apache.org/jira/browse/GERONIMO-3456
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: OpenEJB, security
> Affects Versions: 2.0.1, 2.1
> Environment: All
> Reporter: Anita Kulshreshtha
> Assignee: Anita Kulshreshtha
> Priority: Critical
> Fix For: 2.0.2, 2.1
>
> Attachments: mejb-ear-2.1-SNAPSHOT.ear, MEJB.java
>
>
> Currently access to MEJB is not controlled. Add configurable security for MEJB.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (GERONIMO-3456) Make MEJB security configurable
Posted by "Kevan Miller (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-3456?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12533946 ]
Kevan Miller commented on GERONIMO-3456:
----------------------------------------
Anita, can this jira be closed, now?
> Make MEJB security configurable
> -------------------------------
>
> Key: GERONIMO-3456
> URL: https://issues.apache.org/jira/browse/GERONIMO-3456
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: OpenEJB, security
> Affects Versions: 2.0.1, 2.1
> Environment: All
> Reporter: Anita Kulshreshtha
> Assignee: Anita Kulshreshtha
> Priority: Critical
> Fix For: 2.0.2, 2.1
>
> Attachments: configs.diff, configs.patch, configs.patch, GERONIMO-3456.patch, mejb-ear-2.1-SNAPSHOT.ear, mejb-ejb-2.1-SNAPSHOT.jar, mejb-war-2.1-SNAPSHOT.war, mejb.diff, MEJB.java, mejb.patch
>
>
> Currently access to MEJB is not controlled. Add configurable security for MEJB.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (GERONIMO-3456) Make MEJB security configurable
Posted by "Anita Kulshreshtha (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-3456?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Anita Kulshreshtha updated GERONIMO-3456:
-----------------------------------------
Attachment: mejb-ejb-2.1-SNAPSHOT.jar
configs.patch
mejb.patch
- mejb.patch deploys MEJB as an EJB module. The JNDI lookup is (available from var/geronimo.log)
mejb-ejb/ejb/mgmt/MEJB/javax.managemment.j2ee.ManagementHome.
- configs.patch disables the old MEJB
- The mejb-ejb jar is attached for convenience.
"mejbuser' role is mapped to "admin"
> Make MEJB security configurable
> -------------------------------
>
> Key: GERONIMO-3456
> URL: https://issues.apache.org/jira/browse/GERONIMO-3456
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: OpenEJB, security
> Affects Versions: 2.0.1, 2.1
> Environment: All
> Reporter: Anita Kulshreshtha
> Assignee: Anita Kulshreshtha
> Priority: Critical
> Fix For: 2.0.2, 2.1
>
> Attachments: configs.patch, mejb-ear-2.1-SNAPSHOT.ear, mejb-ejb-2.1-SNAPSHOT.jar, MEJB.java, mejb.patch
>
>
> Currently access to MEJB is not controlled. Add configurable security for MEJB.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (GERONIMO-3456) Make MEJB security configurable
Posted by "Donald Woods (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-3456?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Donald Woods updated GERONIMO-3456:
-----------------------------------
Affects Version/s: 2.1
Fix Version/s: 2.1
Fix needs to go into trunk, too...
> Make MEJB security configurable
> -------------------------------
>
> Key: GERONIMO-3456
> URL: https://issues.apache.org/jira/browse/GERONIMO-3456
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: OpenEJB, security
> Affects Versions: 2.0.1, 2.1
> Environment: All
> Reporter: Anita Kulshreshtha
> Assignee: Anita Kulshreshtha
> Priority: Critical
> Fix For: 2.0.2, 2.1
>
>
> Currently access to MEJB is not controlled. Add configurable security for MEJB.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (GERONIMO-3456) Make MEJB security configurable
Posted by "Anita Kulshreshtha (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-3456?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Anita Kulshreshtha updated GERONIMO-3456:
-----------------------------------------
Attachment: GERONIMO-3456.patch
GERONIMO-3456 is the latest patch
> Make MEJB security configurable
> -------------------------------
>
> Key: GERONIMO-3456
> URL: https://issues.apache.org/jira/browse/GERONIMO-3456
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: OpenEJB, security
> Affects Versions: 2.0.1, 2.1
> Environment: All
> Reporter: Anita Kulshreshtha
> Assignee: Anita Kulshreshtha
> Priority: Critical
> Fix For: 2.0.2, 2.1
>
> Attachments: configs.diff, configs.patch, configs.patch, GERONIMO-3456.patch, mejb-ear-2.1-SNAPSHOT.ear, mejb-ejb-2.1-SNAPSHOT.jar, mejb-war-2.1-SNAPSHOT.war, mejb.diff, MEJB.java, mejb.patch
>
>
> Currently access to MEJB is not controlled. Add configurable security for MEJB.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Closed: (GERONIMO-3456) Make MEJB security configurable
Posted by "Anita Kulshreshtha (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-3456?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Anita Kulshreshtha closed GERONIMO-3456.
----------------------------------------
Resolution: Fixed
> Make MEJB security configurable
> -------------------------------
>
> Key: GERONIMO-3456
> URL: https://issues.apache.org/jira/browse/GERONIMO-3456
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: OpenEJB, security
> Affects Versions: 2.0.1, 2.1
> Environment: All
> Reporter: Anita Kulshreshtha
> Assignee: Anita Kulshreshtha
> Priority: Critical
> Fix For: 2.0.2, 2.1
>
> Attachments: configs.diff, configs.patch, configs.patch, GERONIMO-3456.patch, mejb-ear-2.1-SNAPSHOT.ear, mejb-ejb-2.1-SNAPSHOT.jar, mejb-war-2.1-SNAPSHOT.war, mejb.diff, MEJB.java, mejb.patch
>
>
> Currently access to MEJB is not controlled. Add configurable security for MEJB.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (GERONIMO-3456) Make MEJB security configurable
Posted by "Anita Kulshreshtha (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-3456?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Anita Kulshreshtha updated GERONIMO-3456:
-----------------------------------------
Attachment: configs.diff
The configs.patch has duplicates. Please use configs.diff
> Make MEJB security configurable
> -------------------------------
>
> Key: GERONIMO-3456
> URL: https://issues.apache.org/jira/browse/GERONIMO-3456
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: OpenEJB, security
> Affects Versions: 2.0.1, 2.1
> Environment: All
> Reporter: Anita Kulshreshtha
> Assignee: Anita Kulshreshtha
> Priority: Critical
> Fix For: 2.0.2, 2.1
>
> Attachments: configs.diff, configs.patch, configs.patch, mejb-ear-2.1-SNAPSHOT.ear, mejb-ejb-2.1-SNAPSHOT.jar, mejb-war-2.1-SNAPSHOT.war, MEJB.java, mejb.patch
>
>
> Currently access to MEJB is not controlled. Add configurable security for MEJB.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.