You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@continuum.apache.org by Jesse McConnell <je...@gmail.com> on 2006/10/02 23:16:38 UTC
[vote] rbac-integration branch merge to trunk
Brett suggested we do a vote for this today so I figured I would just
do that now.
[-1/0/+1] vote will be open for 72 hours
Pulling from the other mail, this branch was pulled a bit over a week
ago to test out the plexus-security integration with continuum. Some
of the added features are
* full separation between application webapp and security (lightweight
integration).
* proper modularization for security components (authentication,
authorization, policy, system, web, etc...)
* rbac (role based access control) authorization provider.
* full user management war overlay (using healthy chunk of maven-user
to make it happen)
* toggle-able guest user authorization.
* remember me and single sign on authentication.
* forced admin account creation (through use of interceptor)
* key based authentication (remember me, single sign on, new user
validation emails, and password resets).
* http auth filters (basic and digest).
* aggressive plexus utilization.
* aggressive xwork / webwork integration.
* xwork interceptors for force admin, auto login (remember me),
secured action, and environment checks.
* secured actions for all of the /security namespace and at least one
continuum secured action (these are enforced by the
pssSecureActionInterceptor)
* all the password validation, user management stuff (again maven-user origins)
* continuum-security artifact containing the actual static and dynamic
roles, and a continuum role manager that merges permissions to the
core system, user, and guest users
* ifAuthorized, ifAnyAuthorized, elseAuthorized jsp tags.
* placeholders for ldap authentication, authorization and user details
retrieval using plexus ldap components
* ability to re-use Acegi for authentication
+1 from me
cheers,
jesse
--
jesse mcconnell
jesse.mcconnell@gmail.com
Re: [vote] rbac-integration branch merge to trunk
Posted by Christian Edward Gruber <cg...@israfil.net>.
+1 with a hearty w00t.
Jesse McConnell wrote:
> Brett suggested we do a vote for this today so I figured I would just
> do that now.
>
> [-1/0/+1] vote will be open for 72 hours
>
> Pulling from the other mail, this branch was pulled a bit over a week
> ago to test out the plexus-security integration with continuum. Some
> of the added features are
>
> * full separation between application webapp and security (lightweight
> integration).
> * proper modularization for security components (authentication,
> authorization, policy, system, web, etc...)
> * rbac (role based access control) authorization provider.
> * full user management war overlay (using healthy chunk of maven-user
> to make it happen)
> * toggle-able guest user authorization.
> * remember me and single sign on authentication.
> * forced admin account creation (through use of interceptor)
> * key based authentication (remember me, single sign on, new user
> validation emails, and password resets).
> * http auth filters (basic and digest).
> * aggressive plexus utilization.
> * aggressive xwork / webwork integration.
> * xwork interceptors for force admin, auto login (remember me),
> secured action, and environment checks.
> * secured actions for all of the /security namespace and at least one
> continuum secured action (these are enforced by the
> pssSecureActionInterceptor)
> * all the password validation, user management stuff (again maven-user
> origins)
> * continuum-security artifact containing the actual static and dynamic
> roles, and a continuum role manager that merges permissions to the
> core system, user, and guest users
> * ifAuthorized, ifAnyAuthorized, elseAuthorized jsp tags.
> * placeholders for ldap authentication, authorization and user details
> retrieval using plexus ldap components
> * ability to re-use Acegi for authentication
>
>
> +1 from me
>
> cheers,
> jesse
>
>
--
*christian** gruber + process coach and architect*
*Israfil Consulting Services Corporation*
*email** cgruber@israfil.net + bus 905.640.1119 + mob 416.998.6023*
Re: [vote] rbac-integration branch merge to trunk
Posted by John Casey <jd...@commonjava.org>.
+1
-john
Jesse McConnell wrote:
> Brett suggested we do a vote for this today so I figured I would just
> do that now.
>
> [-1/0/+1] vote will be open for 72 hours
>
> Pulling from the other mail, this branch was pulled a bit over a week
> ago to test out the plexus-security integration with continuum. Some
> of the added features are
>
> * full separation between application webapp and security (lightweight
> integration).
> * proper modularization for security components (authentication,
> authorization, policy, system, web, etc...)
> * rbac (role based access control) authorization provider.
> * full user management war overlay (using healthy chunk of maven-user
> to make it happen)
> * toggle-able guest user authorization.
> * remember me and single sign on authentication.
> * forced admin account creation (through use of interceptor)
> * key based authentication (remember me, single sign on, new user
> validation emails, and password resets).
> * http auth filters (basic and digest).
> * aggressive plexus utilization.
> * aggressive xwork / webwork integration.
> * xwork interceptors for force admin, auto login (remember me),
> secured action, and environment checks.
> * secured actions for all of the /security namespace and at least one
> continuum secured action (these are enforced by the
> pssSecureActionInterceptor)
> * all the password validation, user management stuff (again maven-user
> origins)
> * continuum-security artifact containing the actual static and dynamic
> roles, and a continuum role manager that merges permissions to the
> core system, user, and guest users
> * ifAuthorized, ifAnyAuthorized, elseAuthorized jsp tags.
> * placeholders for ldap authentication, authorization and user details
> retrieval using plexus ldap components
> * ability to re-use Acegi for authentication
>
>
> +1 from me
>
> cheers,
> jesse
>
>
--
John Casey
---
Maven Developer (http://maven.apache.org)
---
Website: http://www.commonjava.org
Blog: http://www.ejlife.net/blogs/john
Re: [vote] rbac-integration branch merge to trunk
Posted by Jason van Zyl <ja...@maven.org>.
+1
On 2 Oct 06, at 5:16 PM 2 Oct 06, Jesse McConnell wrote:
> Brett suggested we do a vote for this today so I figured I would just
> do that now.
>
> [-1/0/+1] vote will be open for 72 hours
>
> Pulling from the other mail, this branch was pulled a bit over a week
> ago to test out the plexus-security integration with continuum. Some
> of the added features are
>
> * full separation between application webapp and security (lightweight
> integration).
> * proper modularization for security components (authentication,
> authorization, policy, system, web, etc...)
> * rbac (role based access control) authorization provider.
> * full user management war overlay (using healthy chunk of maven-user
> to make it happen)
> * toggle-able guest user authorization.
> * remember me and single sign on authentication.
> * forced admin account creation (through use of interceptor)
> * key based authentication (remember me, single sign on, new user
> validation emails, and password resets).
> * http auth filters (basic and digest).
> * aggressive plexus utilization.
> * aggressive xwork / webwork integration.
> * xwork interceptors for force admin, auto login (remember me),
> secured action, and environment checks.
> * secured actions for all of the /security namespace and at least one
> continuum secured action (these are enforced by the
> pssSecureActionInterceptor)
> * all the password validation, user management stuff (again maven-
> user origins)
> * continuum-security artifact containing the actual static and dynamic
> roles, and a continuum role manager that merges permissions to the
> core system, user, and guest users
> * ifAuthorized, ifAnyAuthorized, elseAuthorized jsp tags.
> * placeholders for ldap authentication, authorization and user details
> retrieval using plexus ldap components
> * ability to re-use Acegi for authentication
>
>
> +1 from me
>
> cheers,
> jesse
>
>
> --
> jesse mcconnell
> jesse.mcconnell@gmail.com
>
Re: [vote] rbac-integration branch merge to trunk
Posted by Kenney Westerhof <ke...@apache.org>.
+1
Jesse McConnell wrote:
> Brett suggested we do a vote for this today so I figured I would just
> do that now.
>
> [-1/0/+1] vote will be open for 72 hours
>
> Pulling from the other mail, this branch was pulled a bit over a week
> ago to test out the plexus-security integration with continuum. Some
> of the added features are
>
> * full separation between application webapp and security (lightweight
> integration).
> * proper modularization for security components (authentication,
> authorization, policy, system, web, etc...)
> * rbac (role based access control) authorization provider.
> * full user management war overlay (using healthy chunk of maven-user
> to make it happen)
> * toggle-able guest user authorization.
> * remember me and single sign on authentication.
> * forced admin account creation (through use of interceptor)
> * key based authentication (remember me, single sign on, new user
> validation emails, and password resets).
> * http auth filters (basic and digest).
> * aggressive plexus utilization.
> * aggressive xwork / webwork integration.
> * xwork interceptors for force admin, auto login (remember me),
> secured action, and environment checks.
> * secured actions for all of the /security namespace and at least one
> continuum secured action (these are enforced by the
> pssSecureActionInterceptor)
> * all the password validation, user management stuff (again maven-user
> origins)
> * continuum-security artifact containing the actual static and dynamic
> roles, and a continuum role manager that merges permissions to the
> core system, user, and guest users
> * ifAuthorized, ifAnyAuthorized, elseAuthorized jsp tags.
> * placeholders for ldap authentication, authorization and user details
> retrieval using plexus ldap components
> * ability to re-use Acegi for authentication
>
>
> +1 from me
>
> cheers,
> jesse
>
>
Re: [vote] rbac-integration branch merge to trunk
Posted by Joakim Erdfelt <jo...@erdfelt.com>.
+1 from me.
- Joakim
Jesse McConnell wrote:
> Brett suggested we do a vote for this today so I figured I would just
> do that now.
>
> [-1/0/+1] vote will be open for 72 hours
>
> Pulling from the other mail, this branch was pulled a bit over a week
> ago to test out the plexus-security integration with continuum. Some
> of the added features are
>
> * full separation between application webapp and security (lightweight
> integration).
> * proper modularization for security components (authentication,
> authorization, policy, system, web, etc...)
> * rbac (role based access control) authorization provider.
> * full user management war overlay (using healthy chunk of maven-user
> to make it happen)
> * toggle-able guest user authorization.
> * remember me and single sign on authentication.
> * forced admin account creation (through use of interceptor)
> * key based authentication (remember me, single sign on, new user
> validation emails, and password resets).
> * http auth filters (basic and digest).
> * aggressive plexus utilization.
> * aggressive xwork / webwork integration.
> * xwork interceptors for force admin, auto login (remember me),
> secured action, and environment checks.
> * secured actions for all of the /security namespace and at least one
> continuum secured action (these are enforced by the
> pssSecureActionInterceptor)
> * all the password validation, user management stuff (again maven-user
> origins)
> * continuum-security artifact containing the actual static and dynamic
> roles, and a continuum role manager that merges permissions to the
> core system, user, and guest users
> * ifAuthorized, ifAnyAuthorized, elseAuthorized jsp tags.
> * placeholders for ldap authentication, authorization and user details
> retrieval using plexus ldap components
> * ability to re-use Acegi for authentication
>
>
> +1 from me
>
> cheers,
> jesse
>
>
Re: [vote] rbac-integration branch merge to trunk
Posted by Christian Edward Gruber <cg...@israfil.net>.
Ah! I have to get that "always build" and "group/project/build-def
workspace" idea written up!
I'm very happy to play with rbac, though. Thanks!
Christian.
Jesse McConnell wrote:
> this has been merged to trunk now, time to start plotting a path to
> 1.1 release :)
>
> On 10/6/06, Jason van Zyl <ja...@maven.org> wrote:
>>
>> On 6 Oct 06, at 11:42 AM 6 Oct 06, Jesse McConnell wrote:
>>
>> > summary:
>> >
>> > +1 - 8
>>
>> > binding would be 5 I think..
>> >
>>
>> 3 is all you need with no -1s.
>>
>> > So I'll get this merged over in the next couple of days, probably
>> > early next week actually, there are some jsp integration issues that
>> > will have to take place from what I have heard.
>> >
>> > but we'll integrate this over to trunk asap,
>> >
>> > jesse
>> >
>> >
>> > On 10/4/06, Trygve Laugstøl <tr...@apache.org> wrote:
>> >> Jesse McConnell wrote:
>> >> > Brett suggested we do a vote for this today so I figured I would
>> >> just
>> >> > do that now.
>> >> >
>> >> > [-1/0/+1] vote will be open for 72 hours
>> >>
>> >> +1
>> >>
>> >> --
>> >> Trygve
>> >>
>> >
>> >
>> > --
>> > jesse mcconnell
>> > jesse.mcconnell@gmail.com
>>
>>
>
>
--
*christian** gruber + process coach and architect*
*Israfil Consulting Services Corporation*
*email** cgruber@israfil.net + bus 905.640.1119 + mob 416.998.6023*
Re: [vote] rbac-integration branch merge to trunk
Posted by Jesse McConnell <je...@gmail.com>.
this has been merged to trunk now, time to start plotting a path to
1.1 release :)
On 10/6/06, Jason van Zyl <ja...@maven.org> wrote:
>
> On 6 Oct 06, at 11:42 AM 6 Oct 06, Jesse McConnell wrote:
>
> > summary:
> >
> > +1 - 8
>
> > binding would be 5 I think..
> >
>
> 3 is all you need with no -1s.
>
> > So I'll get this merged over in the next couple of days, probably
> > early next week actually, there are some jsp integration issues that
> > will have to take place from what I have heard.
> >
> > but we'll integrate this over to trunk asap,
> >
> > jesse
> >
> >
> > On 10/4/06, Trygve Laugstøl <tr...@apache.org> wrote:
> >> Jesse McConnell wrote:
> >> > Brett suggested we do a vote for this today so I figured I would
> >> just
> >> > do that now.
> >> >
> >> > [-1/0/+1] vote will be open for 72 hours
> >>
> >> +1
> >>
> >> --
> >> Trygve
> >>
> >
> >
> > --
> > jesse mcconnell
> > jesse.mcconnell@gmail.com
>
>
--
jesse mcconnell
jesse.mcconnell@gmail.com
Re: [vote] rbac-integration branch merge to trunk
Posted by Jason van Zyl <ja...@maven.org>.
On 6 Oct 06, at 11:42 AM 6 Oct 06, Jesse McConnell wrote:
> summary:
>
> +1 - 8
> binding would be 5 I think..
>
3 is all you need with no -1s.
> So I'll get this merged over in the next couple of days, probably
> early next week actually, there are some jsp integration issues that
> will have to take place from what I have heard.
>
> but we'll integrate this over to trunk asap,
>
> jesse
>
>
> On 10/4/06, Trygve Laugstøl <tr...@apache.org> wrote:
>> Jesse McConnell wrote:
>> > Brett suggested we do a vote for this today so I figured I would
>> just
>> > do that now.
>> >
>> > [-1/0/+1] vote will be open for 72 hours
>>
>> +1
>>
>> --
>> Trygve
>>
>
>
> --
> jesse mcconnell
> jesse.mcconnell@gmail.com
Re: [vote] rbac-integration branch merge to trunk
Posted by Jesse McConnell <je...@gmail.com>.
summary:
+1 - 8
binding would be 5 I think..
So I'll get this merged over in the next couple of days, probably
early next week actually, there are some jsp integration issues that
will have to take place from what I have heard.
but we'll integrate this over to trunk asap,
jesse
On 10/4/06, Trygve Laugstøl <tr...@apache.org> wrote:
> Jesse McConnell wrote:
> > Brett suggested we do a vote for this today so I figured I would just
> > do that now.
> >
> > [-1/0/+1] vote will be open for 72 hours
>
> +1
>
> --
> Trygve
>
--
jesse mcconnell
jesse.mcconnell@gmail.com
Re: [vote] rbac-integration branch merge to trunk
Posted by Trygve Laugstøl <tr...@apache.org>.
Jesse McConnell wrote:
> Brett suggested we do a vote for this today so I figured I would just
> do that now.
>
> [-1/0/+1] vote will be open for 72 hours
+1
--
Trygve
Re: [vote] rbac-integration branch merge to trunk
Posted by Emmanuel Venisse <em...@venisse.net>.
+1
Emmanuel
Jesse McConnell a écrit :
> Brett suggested we do a vote for this today so I figured I would just
> do that now.
>
> [-1/0/+1] vote will be open for 72 hours
>
> Pulling from the other mail, this branch was pulled a bit over a week
> ago to test out the plexus-security integration with continuum. Some
> of the added features are
>
> * full separation between application webapp and security (lightweight
> integration).
> * proper modularization for security components (authentication,
> authorization, policy, system, web, etc...)
> * rbac (role based access control) authorization provider.
> * full user management war overlay (using healthy chunk of maven-user
> to make it happen)
> * toggle-able guest user authorization.
> * remember me and single sign on authentication.
> * forced admin account creation (through use of interceptor)
> * key based authentication (remember me, single sign on, new user
> validation emails, and password resets).
> * http auth filters (basic and digest).
> * aggressive plexus utilization.
> * aggressive xwork / webwork integration.
> * xwork interceptors for force admin, auto login (remember me),
> secured action, and environment checks.
> * secured actions for all of the /security namespace and at least one
> continuum secured action (these are enforced by the
> pssSecureActionInterceptor)
> * all the password validation, user management stuff (again maven-user
> origins)
> * continuum-security artifact containing the actual static and dynamic
> roles, and a continuum role manager that merges permissions to the
> core system, user, and guest users
> * ifAuthorized, ifAnyAuthorized, elseAuthorized jsp tags.
> * placeholders for ldap authentication, authorization and user details
> retrieval using plexus ldap components
> * ability to re-use Acegi for authentication
>
>
> +1 from me
>
> cheers,
> jesse
>
>