You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@geronimo.apache.org by de...@geronimo.apache.org on 2004/09/22 04:32:37 UTC
[jira] Created: (GERONIMO-317) Support for method-permissions in the web.xml in Tomcat
Message:
A new issue has been created in JIRA.
---------------------------------------------------------------------
View the issue:
http://issues.apache.org/jira/browse/GERONIMO-317
Here is an overview of the issue:
---------------------------------------------------------------------
Key: GERONIMO-317
Summary: Support for method-permissions in the web.xml in Tomcat
Type: Task
Status: Unassigned
Priority: Major
Project: Apache Geronimo
Components:
web
Tomcat
security
deployment
Assignee:
Reporter: David Blevins
Created: Tue, 21 Sep 2004 7:31 PM
Updated: Tue, 21 Sep 2004 7:31 PM
Description:
Security roles in the web.xml should be linked to roles defined in a Geronimo security realm and not the Tomcat security realm provider.
---------------------------------------------------------------------
JIRA INFORMATION:
This message is automatically generated by JIRA.
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
If you want more information on JIRA, or have a bug to report see:
http://www.atlassian.com/software/jira
Re: [jira] Commented: (GERONIMO-317) Support for
method-permissions in the web.xml in Tomcat
Posted by Jeff Genender <jg...@savoirtech.com>.
Hi DJ,
The title of the JIRA issue was "Support for method-permissions in the
web.xml in Tomcat". I suspect he meant something that had to do with
JACC...but I wanted to be sure.
Jeff
> FWIW I think what david is asking for here is what you get using the
> JACC tomcat realm. I don't see method-permissions mentioned. The idea
> is to use the geronimo permissions-role mapping rather than the
> "identity" non-mapping supplied by tomcat that IIRC you can still get
> using the tomcat JAAS realm.
>
> david jencks
>
> On May 5, 2005, at 10:59 AM, Jeff Genender (JIRA) wrote:
>
>> [
>> http://issues.apache.org/jira/browse/GERONIMO-317?
>> page=comments#action_64574 ]
>>
>> Jeff Genender commented on GERONIMO-317:
>> ----------------------------------------
>>
>> David, can you be more specific by method-permissions in the web.xml?
>> I am assuming you are referring to method permissions of EJB? AFAIK,
>> web.xml does not have method permissions. Are you referring to the
>> web-resource and user-data constraints? These are now supported.
>>
>>> Support for method-permissions in the web.xml in Tomcat
>>> -------------------------------------------------------
>>>
>>> Key: GERONIMO-317
>>> URL: http://issues.apache.org/jira/browse/GERONIMO-317
>>> Project: Geronimo
>>> Type: Task
>>> Components: web, Tomcat, security, deployment
>>> Reporter: David Blevins
>>> Assignee: Alan Cabrera
>>
>>>
>>> Security roles in the web.xml should be linked to roles defined in a
>>> Geronimo security realm and not the Tomcat security realm provider.
>>
>> --
>> This message is automatically generated by JIRA.
>> -
>> If you think it was sent incorrectly contact one of the administrators:
>> http://issues.apache.org/jira/secure/Administrators.jspa
>> -
>> For more information on JIRA, see:
>> http://www.atlassian.com/software/jira
>>
>
Re: [jira] Commented: (GERONIMO-317) Support for method-permissions in the web.xml in Tomcat
Posted by David Jencks <da...@yahoo.com>.
FWIW I think what david is asking for here is what you get using the
JACC tomcat realm. I don't see method-permissions mentioned. The idea
is to use the geronimo permissions-role mapping rather than the
"identity" non-mapping supplied by tomcat that IIRC you can still get
using the tomcat JAAS realm.
david jencks
On May 5, 2005, at 10:59 AM, Jeff Genender (JIRA) wrote:
> [
> http://issues.apache.org/jira/browse/GERONIMO-317?
> page=comments#action_64574 ]
>
> Jeff Genender commented on GERONIMO-317:
> ----------------------------------------
>
> David, can you be more specific by method-permissions in the web.xml?
> I am assuming you are referring to method permissions of EJB? AFAIK,
> web.xml does not have method permissions. Are you referring to the
> web-resource and user-data constraints? These are now supported.
>
>> Support for method-permissions in the web.xml in Tomcat
>> -------------------------------------------------------
>>
>> Key: GERONIMO-317
>> URL: http://issues.apache.org/jira/browse/GERONIMO-317
>> Project: Geronimo
>> Type: Task
>> Components: web, Tomcat, security, deployment
>> Reporter: David Blevins
>> Assignee: Alan Cabrera
>
>>
>> Security roles in the web.xml should be linked to roles defined in a
>> Geronimo security realm and not the Tomcat security realm provider.
>
> --
> This message is automatically generated by JIRA.
> -
> If you think it was sent incorrectly contact one of the administrators:
> http://issues.apache.org/jira/secure/Administrators.jspa
> -
> For more information on JIRA, see:
> http://www.atlassian.com/software/jira
>
[jira] Commented: (GERONIMO-317) Support for method-permissions in the web.xml in Tomcat
Posted by "Jeff Genender (JIRA)" <de...@geronimo.apache.org>.
[ http://issues.apache.org/jira/browse/GERONIMO-317?page=comments#action_64574 ]
Jeff Genender commented on GERONIMO-317:
----------------------------------------
David, can you be more specific by method-permissions in the web.xml? I am assuming you are referring to method permissions of EJB? AFAIK, web.xml does not have method permissions. Are you referring to the web-resource and user-data constraints? These are now supported.
> Support for method-permissions in the web.xml in Tomcat
> -------------------------------------------------------
>
> Key: GERONIMO-317
> URL: http://issues.apache.org/jira/browse/GERONIMO-317
> Project: Geronimo
> Type: Task
> Components: web, Tomcat, security, deployment
> Reporter: David Blevins
> Assignee: Alan Cabrera
>
> Security roles in the web.xml should be linked to roles defined in a Geronimo security realm and not the Tomcat security realm provider.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
[jira] Closed: (GERONIMO-317) Support for method-permissions in the web.xml in Tomcat
Posted by "Jeff Genender (JIRA)" <de...@geronimo.apache.org>.
[ http://issues.apache.org/jira/browse/GERONIMO-317?page=all ]
Jeff Genender closed GERONIMO-317:
----------------------------------
Resolution: Fixed
Fix Version: 1.0-M4
See GERONIMO-314
> Support for method-permissions in the web.xml in Tomcat
> -------------------------------------------------------
>
> Key: GERONIMO-317
> URL: http://issues.apache.org/jira/browse/GERONIMO-317
> Project: Geronimo
> Type: Task
> Components: web, Tomcat, security, deployment
> Reporter: David Blevins
> Assignee: David Blevins
> Fix For: 1.0-M4
>
> Security roles in the web.xml should be linked to roles defined in a Geronimo security realm and not the Tomcat security realm provider.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
[jira] Assigned: (GERONIMO-317) Support for method-permissions in the web.xml in Tomcat
Posted by "Jeff Genender (JIRA)" <de...@geronimo.apache.org>.
[ http://issues.apache.org/jira/browse/GERONIMO-317?page=all ]
Jeff Genender reassigned GERONIMO-317:
--------------------------------------
Assign To: David Blevins (was: Alan Cabrera)
> Support for method-permissions in the web.xml in Tomcat
> -------------------------------------------------------
>
> Key: GERONIMO-317
> URL: http://issues.apache.org/jira/browse/GERONIMO-317
> Project: Geronimo
> Type: Task
> Components: web, Tomcat, security, deployment
> Reporter: David Blevins
> Assignee: David Blevins
>
> Security roles in the web.xml should be linked to roles defined in a Geronimo security realm and not the Tomcat security realm provider.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira