You are viewing a plain text version of this content. The canonical link for it is here.
Posted to jetspeed-dev@portals.apache.org by sg...@apache.org on 2005/08/17 16:35:20 UTC
svn commit: r233183 [1/3] - in /portals/jetspeed-2:
branches/SummersOfCode-2005/src/webapp/WEB-INF/decorations/layout/html/neat/
branches/SummersOfCode-2005/src/webapp/WEB-INF/decorations/portlet/html/neat/
trunk/components/prefs/xdocs/ trunk/component...
Author: sgala
Date: Wed Aug 17 07:33:31 2005
New Revision: 233183
URL: http://svn.apache.org/viewcvs?rev=233183&view=rev
Log:
Some svn:eol-style native missing files. I'll keep cleaning this
Modified:
portals/jetspeed-2/branches/SummersOfCode-2005/src/webapp/WEB-INF/decorations/layout/html/neat/decorator.properties (props changed)
portals/jetspeed-2/branches/SummersOfCode-2005/src/webapp/WEB-INF/decorations/portlet/html/neat/decorator.properties (contents, props changed)
portals/jetspeed-2/trunk/components/prefs/xdocs/index.xml (contents, props changed)
portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/defipci.xml (contents, props changed)
portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/sipchhi.xml (contents, props changed)
portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/sipcshi.xml (contents, props changed)
portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/spcpv.xml (contents, props changed)
portals/jetspeed-2/trunk/components/security/xdocs/arch.xml (contents, props changed)
portals/jetspeed-2/trunk/components/security/xdocs/atn-spi.xml (contents, props changed)
portals/jetspeed-2/trunk/components/security/xdocs/atn.xml (contents, props changed)
portals/jetspeed-2/trunk/components/security/xdocs/atz-jaas.xml (contents, props changed)
portals/jetspeed-2/trunk/components/security/xdocs/atz-spi.xml (contents, props changed)
portals/jetspeed-2/trunk/components/security/xdocs/atz.xml (contents, props changed)
portals/jetspeed-2/trunk/components/security/xdocs/credentials.xml (props changed)
portals/jetspeed-2/trunk/components/security/xdocs/hierarchy.xml (contents, props changed)
portals/jetspeed-2/trunk/components/security/xdocs/high-level-services.xml (contents, props changed)
portals/jetspeed-2/trunk/components/security/xdocs/login-module.xml (contents, props changed)
portals/jetspeed-2/trunk/components/security/xdocs/permission.xml (contents, props changed)
portals/jetspeed-2/trunk/src/webapp/WEB-INF/assembly/ajax.xml (contents, props changed)
portals/jetspeed-2/trunk/src/webapp/WEB-INF/assembly/capabilities.xml (contents, props changed)
portals/jetspeed-2/trunk/src/webapp/WEB-INF/assembly/prefs.xml (contents, props changed)
portals/jetspeed-2/trunk/src/webapp/WEB-INF/assembly/profiler.xml (contents, props changed)
portals/jetspeed-2/trunk/src/webapp/WEB-INF/assembly/registry.xml (contents, props changed)
portals/jetspeed-2/trunk/src/webapp/WEB-INF/assembly/sso.xml (contents, props changed)
portals/jetspeed-2/trunk/src/webapp/WEB-INF/assembly/userinfo.xml (contents, props changed)
portals/jetspeed-2/trunk/src/webapp/WEB-INF/web.xml (contents, props changed)
portals/jetspeed-2/trunk/xdocs/documentation.xml (contents, props changed)
portals/jetspeed-2/trunk/xdocs/j2-maven-plugin.xml (contents, props changed)
portals/jetspeed-2/trunk/xdocs/quality-testing.xml (contents, props changed)
portals/jetspeed-2/trunk/xdocs/source-code.xml (contents, props changed)
Propchange: portals/jetspeed-2/branches/SummersOfCode-2005/src/webapp/WEB-INF/decorations/layout/html/neat/decorator.properties
------------------------------------------------------------------------------
svn:eol-style = native
Modified: portals/jetspeed-2/branches/SummersOfCode-2005/src/webapp/WEB-INF/decorations/portlet/html/neat/decorator.properties
URL: http://svn.apache.org/viewcvs/portals/jetspeed-2/branches/SummersOfCode-2005/src/webapp/WEB-INF/decorations/portlet/html/neat/decorator.properties?rev=233183&r1=233182&r2=233183&view=diff
==============================================================================
--- portals/jetspeed-2/branches/SummersOfCode-2005/src/webapp/WEB-INF/decorations/portlet/html/neat/decorator.properties (original)
+++ portals/jetspeed-2/branches/SummersOfCode-2005/src/webapp/WEB-INF/decorations/portlet/html/neat/decorator.properties Wed Aug 17 07:33:31 2005
@@ -1,18 +1,18 @@
-# Copyright 2004 The Apache Software Foundation
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-# http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-id=neat
-template.type=velocity
-template.extension=.vm
-decorates=portlet
+# Copyright 2004 The Apache Software Foundation
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+id=neat
+template.type=velocity
+template.extension=.vm
+decorates=portlet
Propchange: portals/jetspeed-2/branches/SummersOfCode-2005/src/webapp/WEB-INF/decorations/portlet/html/neat/decorator.properties
------------------------------------------------------------------------------
svn:eol-style = native
Modified: portals/jetspeed-2/trunk/components/prefs/xdocs/index.xml
URL: http://svn.apache.org/viewcvs/portals/jetspeed-2/trunk/components/prefs/xdocs/index.xml?rev=233183&r1=233182&r2=233183&view=diff
==============================================================================
--- portals/jetspeed-2/trunk/components/prefs/xdocs/index.xml (original)
+++ portals/jetspeed-2/trunk/components/prefs/xdocs/index.xml Wed Aug 17 07:33:31 2005
@@ -1,115 +1,115 @@
-<?xml version="1.0" ?>
-<!--
- Copyright 2004 The Apache Software Foundation
-
- Licensed under the Apache License, Version 2.0 (the "License");
- you may not use this file except in compliance with the License.
- You may obtain a copy of the License at
-
- http://www.apache.org/licenses/LICENSE-2.0
-
- Unless required by applicable law or agreed to in writing, software
- distributed under the License is distributed on an "AS IS" BASIS,
- WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- See the License for the specific language governing permissions and
- limitations under the License.
--->
-<document>
- <properties>
- <title>Jetspeed 2 Preferences</title>
- </properties>
- <body>
- <section name="Preferences Overview">
- <p>
- The
- <a href="http://java.sun.com/j2se/1.4.2/docs/api/java/util/prefs/Preferences.html">java.util.prefs.Preferences API</a>
- provides a generic mechanism for storing user and system preferences, as well as configuration data. Jetspeed 2 relies on this API to provide a
- wide ranging of functionality to higher level services. Some of the Jetspeed components leveraging the
- <code>java.util.prefs.Preferences</code>
- API are:
- <ul>
- <li>
- Portlet Preferences: Portlet preferences are stored in the system preferences tree. The following path structure is used to establish
- the location of a given portlet preference in the preferences tree:
- <code>/portlet_application/${Portlet Application Name}/portlets/${Portlet Name}/preferences/${Preference Name}/values</code>
- . The preferences values are stored under the
- <code>values</code>
- node as a map of key/values.
- </li>
- <li>
- User Attributes: User attributes are stored in the user preferences tree as follow. The following path structure is used to stored a
- user's attributes:
- <code>/user/${User Name}/userinfo</code>
- . The user attributes are stored as a preferences key/values map under the userinfo node.
- </li>
- <li>
- Roles and groups hierarchy: Documentation on how roles and groups hierarchy use the
- <code>Preferences</code>
- model can be found in the
- <a href="/multiproject/jetspeed-security/hierarchy.html#Leveraging_Preferences_to_Manage_Hierarchies">security section</a>
- of the documentation.
- </li>
- </ul>
- </p>
- </section>
- <section name="Preferences Implementation Overview">
- <p>
- Jetspeed 2
- <code>Preferences</code>
- implementation leverages the following classes:
- </p>
- <p>
- <img src="images/preferences-c.gif" border="0" />
- </p>
- <table>
- <tr>
- <th>Class</th>
- <th>Description</th>
- </tr>
- <tr>
- <td>
- <code>PreferencesFactoryImpl</code>
- </td>
- <td>
- Implements the <code>java.util.prefs.PreferencesFactory</code> that generates
- <code>Preferences</code> objects. The <code>PreferencesFactoryImpl</code> is
- configured through spring assembly (<code>prefs.xml</code>) to use a
- <code>PreferencesProvider</code> that encapsalutes the backing store implementation.
-
- </td>
- </tr>
- <tr>
- <td>
- <code>PreferencesImpl</code>
- </td>
- <td>
- Extends the <code>java.util.prefs.AbstractPreferences</code> and implements the SPI by
- leveraging the <code>PreferencesProvider</code> API. Jetspeed <code>Preferences</code>
- implementation can be configured to validate that preferences map key/values are created
- for predefined keys. A <code>PropertyManager</code> enforces the checks if enabled.
- </td>
- </tr>
- <tr>
- <td>
- <code>PreferencesProvider</code>
- </td>
- <td>
- Encapsulates the preferences implementation again a specific backing store. In Jetspeed 2, the
- default implementation is provided by
- <code>org.apache.jetspeed.prefs.impl.PersistenceBrokerPreferencesProvider</code>
- </td>
- </tr>
- </table>
- <subsection name="Preferences Database Schema">
- <p>
- The following database schema is being used in Jetspeed 2 to store <code>Preferences</code>
- in a relational database model.
- </p>
- <p>
- <img src="images/preferences-schema.gif" border="0"/>
- </p>
- </subsection>
- </section>
- </body>
-</document>
-
+<?xml version="1.0" ?>
+<!--
+ Copyright 2004 The Apache Software Foundation
+
+ Licensed under the Apache License, Version 2.0 (the "License");
+ you may not use this file except in compliance with the License.
+ You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+-->
+<document>
+ <properties>
+ <title>Jetspeed 2 Preferences</title>
+ </properties>
+ <body>
+ <section name="Preferences Overview">
+ <p>
+ The
+ <a href="http://java.sun.com/j2se/1.4.2/docs/api/java/util/prefs/Preferences.html">java.util.prefs.Preferences API</a>
+ provides a generic mechanism for storing user and system preferences, as well as configuration data. Jetspeed 2 relies on this API to provide a
+ wide ranging of functionality to higher level services. Some of the Jetspeed components leveraging the
+ <code>java.util.prefs.Preferences</code>
+ API are:
+ <ul>
+ <li>
+ Portlet Preferences: Portlet preferences are stored in the system preferences tree. The following path structure is used to establish
+ the location of a given portlet preference in the preferences tree:
+ <code>/portlet_application/${Portlet Application Name}/portlets/${Portlet Name}/preferences/${Preference Name}/values</code>
+ . The preferences values are stored under the
+ <code>values</code>
+ node as a map of key/values.
+ </li>
+ <li>
+ User Attributes: User attributes are stored in the user preferences tree as follow. The following path structure is used to stored a
+ user's attributes:
+ <code>/user/${User Name}/userinfo</code>
+ . The user attributes are stored as a preferences key/values map under the userinfo node.
+ </li>
+ <li>
+ Roles and groups hierarchy: Documentation on how roles and groups hierarchy use the
+ <code>Preferences</code>
+ model can be found in the
+ <a href="/multiproject/jetspeed-security/hierarchy.html#Leveraging_Preferences_to_Manage_Hierarchies">security section</a>
+ of the documentation.
+ </li>
+ </ul>
+ </p>
+ </section>
+ <section name="Preferences Implementation Overview">
+ <p>
+ Jetspeed 2
+ <code>Preferences</code>
+ implementation leverages the following classes:
+ </p>
+ <p>
+ <img src="images/preferences-c.gif" border="0" />
+ </p>
+ <table>
+ <tr>
+ <th>Class</th>
+ <th>Description</th>
+ </tr>
+ <tr>
+ <td>
+ <code>PreferencesFactoryImpl</code>
+ </td>
+ <td>
+ Implements the <code>java.util.prefs.PreferencesFactory</code> that generates
+ <code>Preferences</code> objects. The <code>PreferencesFactoryImpl</code> is
+ configured through spring assembly (<code>prefs.xml</code>) to use a
+ <code>PreferencesProvider</code> that encapsalutes the backing store implementation.
+
+ </td>
+ </tr>
+ <tr>
+ <td>
+ <code>PreferencesImpl</code>
+ </td>
+ <td>
+ Extends the <code>java.util.prefs.AbstractPreferences</code> and implements the SPI by
+ leveraging the <code>PreferencesProvider</code> API. Jetspeed <code>Preferences</code>
+ implementation can be configured to validate that preferences map key/values are created
+ for predefined keys. A <code>PropertyManager</code> enforces the checks if enabled.
+ </td>
+ </tr>
+ <tr>
+ <td>
+ <code>PreferencesProvider</code>
+ </td>
+ <td>
+ Encapsulates the preferences implementation again a specific backing store. In Jetspeed 2, the
+ default implementation is provided by
+ <code>org.apache.jetspeed.prefs.impl.PersistenceBrokerPreferencesProvider</code>
+ </td>
+ </tr>
+ </table>
+ <subsection name="Preferences Database Schema">
+ <p>
+ The following database schema is being used in Jetspeed 2 to store <code>Preferences</code>
+ in a relational database model.
+ </p>
+ <p>
+ <img src="images/preferences-schema.gif" border="0"/>
+ </p>
+ </subsection>
+ </section>
+ </body>
+</document>
+
Propchange: portals/jetspeed-2/trunk/components/prefs/xdocs/index.xml
------------------------------------------------------------------------------
svn:eol-style = native
Modified: portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/defipci.xml
URL: http://svn.apache.org/viewcvs/portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/defipci.xml?rev=233183&r1=233182&r2=233183&view=diff
==============================================================================
--- portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/defipci.xml (original)
+++ portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/defipci.xml Wed Aug 17 07:33:31 2005
@@ -1,49 +1,49 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN//EN" "http://www.springframework.org/dtd/spring-beans.dtd">
-<!--
-Copyright 2004 The Apache Software Foundation
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
- http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
--->
-<beans>
- <!-- MessageDigestCredentialPasswordEncoder usage -->
- <bean id="org.apache.jetspeed.security.spi.CredentialPasswordValidator"
- class="org.apache.jetspeed.security.spi.impl.DefaultCredentialPasswordValidator"/>
-
- <bean id="org.apache.jetspeed.security.spi.CredentialPasswordEncoder"
- class="org.apache.jetspeed.security.spi.impl.MessageDigestCredentialPasswordEncoder">
- <constructor-arg index="0"><value>SHA-1</value></constructor-arg>
- </bean>
-
- <bean id="org.apache.jetspeed.security.spi.InternalPasswordCredentialInterceptor"
- class="org.apache.jetspeed.security.spi.impl.InternalPasswordCredentialStateHandlingInterceptor">
- <constructor-arg index="0"><value>3</value></constructor-arg>
- <constructor-arg index="1"><value>7</value></constructor-arg>
- </bean>
-
- <bean id="org.apache.jetspeed.security.spi.PasswordCredentialProvider"
- class="org.apache.jetspeed.security.spi.impl.DefaultPasswordCredentialProvider">
- <constructor-arg index="0"><ref bean="org.apache.jetspeed.security.spi.CredentialPasswordValidator"/></constructor-arg>
- <constructor-arg index="1"><ref bean="org.apache.jetspeed.security.spi.CredentialPasswordEncoder"/></constructor-arg>
- </bean>
-
- <!-- Security SPI: CredentialHandler -->
- <bean id="org.apache.jetspeed.security.spi.CredentialHandler"
- class="org.apache.jetspeed.security.spi.impl.DefaultCredentialHandler"
- >
- <constructor-arg index="0"><ref bean="org.apache.jetspeed.security.spi.SecurityAccess"/></constructor-arg>
- <constructor-arg index="1"><ref bean="org.apache.jetspeed.security.spi.PasswordCredentialProvider"/></constructor-arg>
- <constructor-arg index="2"><ref bean="org.apache.jetspeed.security.spi.InternalPasswordCredentialInterceptor"/></constructor-arg>
- </bean>
-
-</beans>
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN//EN" "http://www.springframework.org/dtd/spring-beans.dtd">
+<!--
+Copyright 2004 The Apache Software Foundation
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+-->
+<beans>
+ <!-- MessageDigestCredentialPasswordEncoder usage -->
+ <bean id="org.apache.jetspeed.security.spi.CredentialPasswordValidator"
+ class="org.apache.jetspeed.security.spi.impl.DefaultCredentialPasswordValidator"/>
+
+ <bean id="org.apache.jetspeed.security.spi.CredentialPasswordEncoder"
+ class="org.apache.jetspeed.security.spi.impl.MessageDigestCredentialPasswordEncoder">
+ <constructor-arg index="0"><value>SHA-1</value></constructor-arg>
+ </bean>
+
+ <bean id="org.apache.jetspeed.security.spi.InternalPasswordCredentialInterceptor"
+ class="org.apache.jetspeed.security.spi.impl.InternalPasswordCredentialStateHandlingInterceptor">
+ <constructor-arg index="0"><value>3</value></constructor-arg>
+ <constructor-arg index="1"><value>7</value></constructor-arg>
+ </bean>
+
+ <bean id="org.apache.jetspeed.security.spi.PasswordCredentialProvider"
+ class="org.apache.jetspeed.security.spi.impl.DefaultPasswordCredentialProvider">
+ <constructor-arg index="0"><ref bean="org.apache.jetspeed.security.spi.CredentialPasswordValidator"/></constructor-arg>
+ <constructor-arg index="1"><ref bean="org.apache.jetspeed.security.spi.CredentialPasswordEncoder"/></constructor-arg>
+ </bean>
+
+ <!-- Security SPI: CredentialHandler -->
+ <bean id="org.apache.jetspeed.security.spi.CredentialHandler"
+ class="org.apache.jetspeed.security.spi.impl.DefaultCredentialHandler"
+ >
+ <constructor-arg index="0"><ref bean="org.apache.jetspeed.security.spi.SecurityAccess"/></constructor-arg>
+ <constructor-arg index="1"><ref bean="org.apache.jetspeed.security.spi.PasswordCredentialProvider"/></constructor-arg>
+ <constructor-arg index="2"><ref bean="org.apache.jetspeed.security.spi.InternalPasswordCredentialInterceptor"/></constructor-arg>
+ </bean>
+
+</beans>
Propchange: portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/defipci.xml
------------------------------------------------------------------------------
svn:eol-style = native
Modified: portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/sipchhi.xml
URL: http://svn.apache.org/viewcvs/portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/sipchhi.xml?rev=233183&r1=233182&r2=233183&view=diff
==============================================================================
--- portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/sipchhi.xml (original)
+++ portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/sipchhi.xml Wed Aug 17 07:33:31 2005
@@ -1,51 +1,51 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN//EN" "http://www.springframework.org/dtd/spring-beans.dtd">
-<!--
-Copyright 2004 The Apache Software Foundation
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
- http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
--->
-<beans>
- <!-- MessageDigestCredentialPasswordEncoder usage -->
- <bean id="org.apache.jetspeed.security.spi.CredentialPasswordValidator"
- class="org.apache.jetspeed.security.spi.impl.DefaultCredentialPasswordValidator"/>
-
- <bean id="org.apache.jetspeed.security.spi.CredentialPasswordEncoder"
- class="org.apache.jetspeed.security.spi.impl.MessageDigestCredentialPasswordEncoder">
- <constructor-arg index="0"><value>SHA-1</value></constructor-arg>
- </bean>
-
- <bean id="org.apache.jetspeed.security.spi.InternalPasswordCredentialInterceptor"
- class="org.apache.jetspeed.security.spi.impl.InternalPasswordCredentialHistoryHandlingInterceptor">
- <constructor-arg index="0"><value>3</value></constructor-arg>
- <constructor-arg index="1"><value>7</value></constructor-arg>
- <!-- historySize -->
- <constructor-arg index="2"><value>3</value></constructor-arg>
- </bean>
-
- <bean id="org.apache.jetspeed.security.spi.PasswordCredentialProvider"
- class="org.apache.jetspeed.security.spi.impl.DefaultPasswordCredentialProvider">
- <constructor-arg index="0"><ref bean="org.apache.jetspeed.security.spi.CredentialPasswordValidator"/></constructor-arg>
- <constructor-arg index="1"><null/></constructor-arg>
- </bean>
-
- <!-- Security SPI: CredentialHandler -->
- <bean id="org.apache.jetspeed.security.spi.CredentialHandler"
- class="org.apache.jetspeed.security.spi.impl.DefaultCredentialHandler"
- >
- <constructor-arg index="0"><ref bean="org.apache.jetspeed.security.spi.SecurityAccess"/></constructor-arg>
- <constructor-arg index="1"><ref bean="org.apache.jetspeed.security.spi.PasswordCredentialProvider"/></constructor-arg>
- <constructor-arg index="2"><ref bean="org.apache.jetspeed.security.spi.InternalPasswordCredentialInterceptor"/></constructor-arg>
- </bean>
-
-</beans>
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN//EN" "http://www.springframework.org/dtd/spring-beans.dtd">
+<!--
+Copyright 2004 The Apache Software Foundation
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+-->
+<beans>
+ <!-- MessageDigestCredentialPasswordEncoder usage -->
+ <bean id="org.apache.jetspeed.security.spi.CredentialPasswordValidator"
+ class="org.apache.jetspeed.security.spi.impl.DefaultCredentialPasswordValidator"/>
+
+ <bean id="org.apache.jetspeed.security.spi.CredentialPasswordEncoder"
+ class="org.apache.jetspeed.security.spi.impl.MessageDigestCredentialPasswordEncoder">
+ <constructor-arg index="0"><value>SHA-1</value></constructor-arg>
+ </bean>
+
+ <bean id="org.apache.jetspeed.security.spi.InternalPasswordCredentialInterceptor"
+ class="org.apache.jetspeed.security.spi.impl.InternalPasswordCredentialHistoryHandlingInterceptor">
+ <constructor-arg index="0"><value>3</value></constructor-arg>
+ <constructor-arg index="1"><value>7</value></constructor-arg>
+ <!-- historySize -->
+ <constructor-arg index="2"><value>3</value></constructor-arg>
+ </bean>
+
+ <bean id="org.apache.jetspeed.security.spi.PasswordCredentialProvider"
+ class="org.apache.jetspeed.security.spi.impl.DefaultPasswordCredentialProvider">
+ <constructor-arg index="0"><ref bean="org.apache.jetspeed.security.spi.CredentialPasswordValidator"/></constructor-arg>
+ <constructor-arg index="1"><null/></constructor-arg>
+ </bean>
+
+ <!-- Security SPI: CredentialHandler -->
+ <bean id="org.apache.jetspeed.security.spi.CredentialHandler"
+ class="org.apache.jetspeed.security.spi.impl.DefaultCredentialHandler"
+ >
+ <constructor-arg index="0"><ref bean="org.apache.jetspeed.security.spi.SecurityAccess"/></constructor-arg>
+ <constructor-arg index="1"><ref bean="org.apache.jetspeed.security.spi.PasswordCredentialProvider"/></constructor-arg>
+ <constructor-arg index="2"><ref bean="org.apache.jetspeed.security.spi.InternalPasswordCredentialInterceptor"/></constructor-arg>
+ </bean>
+
+</beans>
Propchange: portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/sipchhi.xml
------------------------------------------------------------------------------
svn:eol-style = native
Modified: portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/sipcshi.xml
URL: http://svn.apache.org/viewcvs/portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/sipcshi.xml?rev=233183&r1=233182&r2=233183&view=diff
==============================================================================
--- portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/sipcshi.xml (original)
+++ portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/sipcshi.xml Wed Aug 17 07:33:31 2005
@@ -1,33 +1,33 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN//EN" "http://www.springframework.org/dtd/spring-beans.dtd">
-<!--
-Copyright 2004 The Apache Software Foundation
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
- http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
--->
-<beans>
- <!-- MessageDigestCredentialPasswordEncoder usage -->
- <bean id="org.apache.jetspeed.security.spi.CredentialPasswordValidator"
- class="org.apache.jetspeed.security.spi.impl.DefaultCredentialPasswordValidator"/>
-
- <bean id="org.apache.jetspeed.security.spi.CredentialPasswordEncoder"
- class="org.apache.jetspeed.security.spi.impl.MessageDigestCredentialPasswordEncoder">
- <constructor-arg index="0"><value>SHA-1</value></constructor-arg>
- </bean>
-
- <bean id="org.apache.jetspeed.security.spi.PasswordCredentialProvider"
- class="org.apache.jetspeed.security.spi.impl.DefaultPasswordCredentialProvider">
- <constructor-arg index="0"><ref bean="org.apache.jetspeed.security.spi.CredentialPasswordValidator"/></constructor-arg>
- <constructor-arg index="1"><ref bean="org.apache.jetspeed.security.spi.CredentialPasswordEncoder"/></constructor-arg>
- </bean>
-</beans>
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN//EN" "http://www.springframework.org/dtd/spring-beans.dtd">
+<!--
+Copyright 2004 The Apache Software Foundation
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+-->
+<beans>
+ <!-- MessageDigestCredentialPasswordEncoder usage -->
+ <bean id="org.apache.jetspeed.security.spi.CredentialPasswordValidator"
+ class="org.apache.jetspeed.security.spi.impl.DefaultCredentialPasswordValidator"/>
+
+ <bean id="org.apache.jetspeed.security.spi.CredentialPasswordEncoder"
+ class="org.apache.jetspeed.security.spi.impl.MessageDigestCredentialPasswordEncoder">
+ <constructor-arg index="0"><value>SHA-1</value></constructor-arg>
+ </bean>
+
+ <bean id="org.apache.jetspeed.security.spi.PasswordCredentialProvider"
+ class="org.apache.jetspeed.security.spi.impl.DefaultPasswordCredentialProvider">
+ <constructor-arg index="0"><ref bean="org.apache.jetspeed.security.spi.CredentialPasswordValidator"/></constructor-arg>
+ <constructor-arg index="1"><ref bean="org.apache.jetspeed.security.spi.CredentialPasswordEncoder"/></constructor-arg>
+ </bean>
+</beans>
Propchange: portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/sipcshi.xml
------------------------------------------------------------------------------
svn:eol-style = native
Modified: portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/spcpv.xml
URL: http://svn.apache.org/viewcvs/portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/spcpv.xml?rev=233183&r1=233182&r2=233183&view=diff
==============================================================================
--- portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/spcpv.xml (original)
+++ portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/spcpv.xml Wed Aug 17 07:33:31 2005
@@ -1,38 +1,38 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN//EN" "http://www.springframework.org/dtd/spring-beans.dtd">
-<!--
-Copyright 2004 The Apache Software Foundation
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
- http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
--->
-<beans>
- <!-- MessageDigestCredentialPasswordEncoder usage -->
- <bean id="org.apache.jetspeed.security.spi.CredentialPasswordValidator"
- class="org.apache.jetspeed.security.spi.impl.SimpleCredentialPasswordValidator">
- <!-- minPasswordLength -->
- <constructor-arg index="0"><value>8</value></constructor-arg>
- <!-- minNumberOfDigits -->
- <constructor-arg index="1"><value>2</value></constructor-arg>
- </bean>
-
- <bean id="org.apache.jetspeed.security.spi.CredentialPasswordEncoder"
- class="org.apache.jetspeed.security.spi.impl.MessageDigestCredentialPasswordEncoder">
- <constructor-arg index="0"><value>SHA-1</value></constructor-arg>
- </bean>
-
- <bean id="org.apache.jetspeed.security.spi.PasswordCredentialProvider"
- class="org.apache.jetspeed.security.spi.impl.DefaultPasswordCredentialProvider">
- <constructor-arg index="0"><ref bean="org.apache.jetspeed.security.spi.CredentialPasswordValidator"/></constructor-arg>
- <constructor-arg index="1"><ref bean="org.apache.jetspeed.security.spi.CredentialPasswordEncoder"/></constructor-arg>
- </bean>
-</beans>
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE beans PUBLIC "-//SPRING//DTD BEAN//EN" "http://www.springframework.org/dtd/spring-beans.dtd">
+<!--
+Copyright 2004 The Apache Software Foundation
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+-->
+<beans>
+ <!-- MessageDigestCredentialPasswordEncoder usage -->
+ <bean id="org.apache.jetspeed.security.spi.CredentialPasswordValidator"
+ class="org.apache.jetspeed.security.spi.impl.SimpleCredentialPasswordValidator">
+ <!-- minPasswordLength -->
+ <constructor-arg index="0"><value>8</value></constructor-arg>
+ <!-- minNumberOfDigits -->
+ <constructor-arg index="1"><value>2</value></constructor-arg>
+ </bean>
+
+ <bean id="org.apache.jetspeed.security.spi.CredentialPasswordEncoder"
+ class="org.apache.jetspeed.security.spi.impl.MessageDigestCredentialPasswordEncoder">
+ <constructor-arg index="0"><value>SHA-1</value></constructor-arg>
+ </bean>
+
+ <bean id="org.apache.jetspeed.security.spi.PasswordCredentialProvider"
+ class="org.apache.jetspeed.security.spi.impl.DefaultPasswordCredentialProvider">
+ <constructor-arg index="0"><ref bean="org.apache.jetspeed.security.spi.CredentialPasswordValidator"/></constructor-arg>
+ <constructor-arg index="1"><ref bean="org.apache.jetspeed.security.spi.CredentialPasswordEncoder"/></constructor-arg>
+ </bean>
+</beans>
Propchange: portals/jetspeed-2/trunk/components/security/src/test/JETSPEED-INF/spring/spcpv.xml
------------------------------------------------------------------------------
svn:eol-style = native
Modified: portals/jetspeed-2/trunk/components/security/xdocs/arch.xml
URL: http://svn.apache.org/viewcvs/portals/jetspeed-2/trunk/components/security/xdocs/arch.xml?rev=233183&r1=233182&r2=233183&view=diff
==============================================================================
--- portals/jetspeed-2/trunk/components/security/xdocs/arch.xml (original)
+++ portals/jetspeed-2/trunk/components/security/xdocs/arch.xml Wed Aug 17 07:33:31 2005
@@ -1,58 +1,58 @@
-<?xml version="1.0"?>
-<!--
- Copyright 2004 The Apache Software Foundation
-
- Licensed under the Apache License, Version 2.0 (the "License");
- you may not use this file except in compliance with the License.
- You may obtain a copy of the License at
-
- http://www.apache.org/licenses/LICENSE-2.0
-
- Unless required by applicable law or agreed to in writing, software
- distributed under the License is distributed on an "AS IS" BASIS,
- WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- See the License for the specific language governing permissions and
- limitations under the License.
--->
-<document>
- <properties>
- <title>Jetspeed 2 Security - Architecture Overview</title>
- <authors>
- <person name="David Le Strat" email="dlestrat@apache.org" />
- </authors>
- </properties>
- <body>
- <section name="Architecture Overview">
- <p>
- Jetspeed 2 security leverages J2EE authentication and authorization standards for both authentication
- and authorization through the implementation of a default <code>LoginModule</code> and a default authorization
- <code>Policy</code>.
- </p>
- <p>
- Authentication establishes the identity of the user and populates the <code>Subject</code> with all
- the user principals. In a portal context, the populated <code>Subject</code> is added to the session
- in the <code>org.apache.jetspeed.security.SecurityValve</code> implementation. The <code>Subject</code>
- principals are then used to authorize the user's access to a given resource. It leverages JAAS authorization
- by checking the user's permission with the
- <a href="http://java.sun.com/j2se/1.4.2/docs/api/java/security/AccessController.html">AccessController</a>. More details
- on authorization are provided in the <a href="atz-jaas.html">JAAS authorization section</a> of this documentation.
- </p>
- <p>
- The following diagram describes the high level security architecture:
- </p>
- <p align="center">
- <img src="images/arch-overview.gif" border="0" />
- </p>
- <p>
- Configuration files for each component areas are specified. For more information, go to the documentation
- section on <a href="config.html">configuration</a>.
- </p>
- <p>
- Jetspeed security architecture is fully JAAS compliant. Developers can replace Jetspeed security
- architecture with their own <code>LoginModule</code> and <code>Policy</code> implementation. Jetspeed
- implementation provides management programming and user interfaces as well as an SPI model to facilitate
- its extension.
- </p>
- </section>
- </body>
+<?xml version="1.0"?>
+<!--
+ Copyright 2004 The Apache Software Foundation
+
+ Licensed under the Apache License, Version 2.0 (the "License");
+ you may not use this file except in compliance with the License.
+ You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+-->
+<document>
+ <properties>
+ <title>Jetspeed 2 Security - Architecture Overview</title>
+ <authors>
+ <person name="David Le Strat" email="dlestrat@apache.org" />
+ </authors>
+ </properties>
+ <body>
+ <section name="Architecture Overview">
+ <p>
+ Jetspeed 2 security leverages J2EE authentication and authorization standards for both authentication
+ and authorization through the implementation of a default <code>LoginModule</code> and a default authorization
+ <code>Policy</code>.
+ </p>
+ <p>
+ Authentication establishes the identity of the user and populates the <code>Subject</code> with all
+ the user principals. In a portal context, the populated <code>Subject</code> is added to the session
+ in the <code>org.apache.jetspeed.security.SecurityValve</code> implementation. The <code>Subject</code>
+ principals are then used to authorize the user's access to a given resource. It leverages JAAS authorization
+ by checking the user's permission with the
+ <a href="http://java.sun.com/j2se/1.4.2/docs/api/java/security/AccessController.html">AccessController</a>. More details
+ on authorization are provided in the <a href="atz-jaas.html">JAAS authorization section</a> of this documentation.
+ </p>
+ <p>
+ The following diagram describes the high level security architecture:
+ </p>
+ <p align="center">
+ <img src="images/arch-overview.gif" border="0" />
+ </p>
+ <p>
+ Configuration files for each component areas are specified. For more information, go to the documentation
+ section on <a href="config.html">configuration</a>.
+ </p>
+ <p>
+ Jetspeed security architecture is fully JAAS compliant. Developers can replace Jetspeed security
+ architecture with their own <code>LoginModule</code> and <code>Policy</code> implementation. Jetspeed
+ implementation provides management programming and user interfaces as well as an SPI model to facilitate
+ its extension.
+ </p>
+ </section>
+ </body>
</document>
Propchange: portals/jetspeed-2/trunk/components/security/xdocs/arch.xml
------------------------------------------------------------------------------
svn:eol-style = native
Modified: portals/jetspeed-2/trunk/components/security/xdocs/atn-spi.xml
URL: http://svn.apache.org/viewcvs/portals/jetspeed-2/trunk/components/security/xdocs/atn-spi.xml?rev=233183&r1=233182&r2=233183&view=diff
==============================================================================
--- portals/jetspeed-2/trunk/components/security/xdocs/atn-spi.xml (original)
+++ portals/jetspeed-2/trunk/components/security/xdocs/atn-spi.xml Wed Aug 17 07:33:31 2005
@@ -1,92 +1,92 @@
-<?xml version="1.0"?>
-<!--
- Copyright 2004 The Apache Software Foundation
-
- Licensed under the Apache License, Version 2.0 (the "License");
- you may not use this file except in compliance with the License.
- You may obtain a copy of the License at
-
- http://www.apache.org/licenses/LICENSE-2.0
-
- Unless required by applicable law or agreed to in writing, software
- distributed under the License is distributed on an "AS IS" BASIS,
- WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- See the License for the specific language governing permissions and
- limitations under the License.
--->
-<document>
- <properties>
- <title>Jetspeed 2 Security - Authentication SPI</title>
- <authors>
- <person name="David Le Strat" email="dlestrat@apache.org" />
- </authors>
- </properties>
- <body>
- <section name="Authentication SPI Overview">
- <p>
- The authentication SPI provides the implementation for managing user principals and their credentials and provides the underlying
- <code>UserManager</code>
- coarsed service implementation.
- </p>
- <p>
- The authentication SPI also provides a mechanism for managing users across multiple datastore. The class diagram below describes how the
- authentication SPI relates to the
- <code>UserManager</code>
- .
- </p>
- <p>
- <img src="images/atn-spi-arch-c.gif" border="0" />
- </p>
- </section>
- <section name="Authentication SPI Components">
- <p>The authentication SPI implements the following components:</p>
- <table>
- <tr>
- <th>Component</th>
- <th>Description</th>
- </tr>
- <tr>
- <td>
- <code>AuthenticationProviderProxy</code>
- </td>
- <td>
- A proxy to the various
- <code>AuthenticationProvider</code>
- implementations. The
- <code>AuthenticationProviderProxy</code>
- is responsible of invoking the correct
- <code>AuthenticationProvider</code>
- to authenticate or manage a specific user against a specific data store.
- </td>
- </tr>
- <tr>
- <td>
- <code>AuthenticationProvider</code>
- </td>
- <td>
- Exposes a specific authentication and user management services implementation. Jetspeed 2
- provides 2 implementations: RDBMS and LDAP. Multiple authentication providers
- can be provided through configuration. For more information,
- see the <a href="config.html#security-providers_xml">security providers</a> configuration.
- </td>
- </tr>
- <tr>
- <td>
- <code>CredentialHandler</code>
- </td>
- <td>
- See <a href="config.html#security-spi-atn_xml">security-spi-atn.xml</a> configuration.
- </td>
- </tr>
- <tr>
- <td>
- <code>UserSecurityHandler</code>
- </td>
- <td>
- See <a href="config.html#security-spi-atn_xml">security-spi-atn.xml</a> configuration.
- </td>
- </tr>
- </table>
- </section>
- </body>
+<?xml version="1.0"?>
+<!--
+ Copyright 2004 The Apache Software Foundation
+
+ Licensed under the Apache License, Version 2.0 (the "License");
+ you may not use this file except in compliance with the License.
+ You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+-->
+<document>
+ <properties>
+ <title>Jetspeed 2 Security - Authentication SPI</title>
+ <authors>
+ <person name="David Le Strat" email="dlestrat@apache.org" />
+ </authors>
+ </properties>
+ <body>
+ <section name="Authentication SPI Overview">
+ <p>
+ The authentication SPI provides the implementation for managing user principals and their credentials and provides the underlying
+ <code>UserManager</code>
+ coarsed service implementation.
+ </p>
+ <p>
+ The authentication SPI also provides a mechanism for managing users across multiple datastore. The class diagram below describes how the
+ authentication SPI relates to the
+ <code>UserManager</code>
+ .
+ </p>
+ <p>
+ <img src="images/atn-spi-arch-c.gif" border="0" />
+ </p>
+ </section>
+ <section name="Authentication SPI Components">
+ <p>The authentication SPI implements the following components:</p>
+ <table>
+ <tr>
+ <th>Component</th>
+ <th>Description</th>
+ </tr>
+ <tr>
+ <td>
+ <code>AuthenticationProviderProxy</code>
+ </td>
+ <td>
+ A proxy to the various
+ <code>AuthenticationProvider</code>
+ implementations. The
+ <code>AuthenticationProviderProxy</code>
+ is responsible of invoking the correct
+ <code>AuthenticationProvider</code>
+ to authenticate or manage a specific user against a specific data store.
+ </td>
+ </tr>
+ <tr>
+ <td>
+ <code>AuthenticationProvider</code>
+ </td>
+ <td>
+ Exposes a specific authentication and user management services implementation. Jetspeed 2
+ provides 2 implementations: RDBMS and LDAP. Multiple authentication providers
+ can be provided through configuration. For more information,
+ see the <a href="config.html#security-providers_xml">security providers</a> configuration.
+ </td>
+ </tr>
+ <tr>
+ <td>
+ <code>CredentialHandler</code>
+ </td>
+ <td>
+ See <a href="config.html#security-spi-atn_xml">security-spi-atn.xml</a> configuration.
+ </td>
+ </tr>
+ <tr>
+ <td>
+ <code>UserSecurityHandler</code>
+ </td>
+ <td>
+ See <a href="config.html#security-spi-atn_xml">security-spi-atn.xml</a> configuration.
+ </td>
+ </tr>
+ </table>
+ </section>
+ </body>
</document>
Propchange: portals/jetspeed-2/trunk/components/security/xdocs/atn-spi.xml
------------------------------------------------------------------------------
svn:eol-style = native
Modified: portals/jetspeed-2/trunk/components/security/xdocs/atn.xml
URL: http://svn.apache.org/viewcvs/portals/jetspeed-2/trunk/components/security/xdocs/atn.xml?rev=233183&r1=233182&r2=233183&view=diff
==============================================================================
--- portals/jetspeed-2/trunk/components/security/xdocs/atn.xml (original)
+++ portals/jetspeed-2/trunk/components/security/xdocs/atn.xml Wed Aug 17 07:33:31 2005
@@ -1,77 +1,77 @@
-<?xml version="1.0"?>
-<!--
- Copyright 2004 The Apache Software Foundation
-
- Licensed under the Apache License, Version 2.0 (the "License");
- you may not use this file except in compliance with the License.
- You may obtain a copy of the License at
-
- http://www.apache.org/licenses/LICENSE-2.0
-
- Unless required by applicable law or agreed to in writing, software
- distributed under the License is distributed on an "AS IS" BASIS,
- WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- See the License for the specific language governing permissions and
- limitations under the License.
--->
-<document>
- <properties>
- <title>Jetspeed 2 Security - Login Module</title>
- <authors>
- <person name="David Le Strat" email="dlestrat@apache.org" />
- </authors>
- </properties>
- <body>
- <section name="Authentication Architecture Overview">
- <p>
- For authentication, Jetspeed 2 leverages Java
- <a href="http://java.sun.com/j2se/1.4.2/docs/api/javax/security/auth/spi/LoginModule.html">LoginModule</a>
- architecture. It provides a <a href="login-module.html">DefaultLoginModule</a> implementation and a
- flexible architecture to be able to authenticate user against multiple user repositories and provide user
- management capabilities across those repository. A <code>UserManager</code> provides a set of coarsed
- services for authenticating and managing users. The class diagram below illustrates how the
- <code>UserManager</code> provides authentication to the <code>DefaultLoginModule</code> and leverages
- the <a href="atn-spi.html">Authentication SPI</a> to interact with various implementation and user stores.
- </p>
- <p>
- <img src="images/atn-arch-c.gif" border="0" />
- </p>
- <p>
- The various components described above fulfill the following functions:
- <table>
- <tr>
- <th>Component</th>
- <th>Description</th>
- </tr>
- <tr>
- <td><code>DefaultLoginModule</code></td>
- <td>Jetspeed 2 default <a href="login-module.html">LoginModule</a> implementation which
- leverages the <code>authenticate()</code> method of the <code>UserManager</code> to provide
- authentication against the various <code>AuthenticationProvider</code> implementation currently
- configured.</td>
- </tr>
- <tr>
- <td><code>UserManager</code></td>
- <td>Coarsed service providing authentication and user management. The <code>UserManager</code>code>
- leverages the various <code>AuthenticationProvider</code> implementations exposed to it through
- the <code>AuthenticationProviderProxy</code> through the <code>SecurityProvider</code>.
- </td>
- </tr>
- <tr>
- <td><code>SecurityProvider</code></td>
- <td>Provides access to the security providers exposing SPI implementation to the coarsed security
- services.
- </td>
- </tr>
- <tr>
- <td><code>AuthenticationProviderProxy</code></td>
- <td>A proxy to the various <code>AuthenticationProvider</code> implementations. The <code>AuthenticationProviderProxy</code>
- is responsible of invoking the correct <code>AuthenticationProvider</code> to authenticate or manage
- a specific user against a specific data store.</td>
- </tr>
- </table>
- </p>
- </section>
-
- </body>
+<?xml version="1.0"?>
+<!--
+ Copyright 2004 The Apache Software Foundation
+
+ Licensed under the Apache License, Version 2.0 (the "License");
+ you may not use this file except in compliance with the License.
+ You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+-->
+<document>
+ <properties>
+ <title>Jetspeed 2 Security - Login Module</title>
+ <authors>
+ <person name="David Le Strat" email="dlestrat@apache.org" />
+ </authors>
+ </properties>
+ <body>
+ <section name="Authentication Architecture Overview">
+ <p>
+ For authentication, Jetspeed 2 leverages Java
+ <a href="http://java.sun.com/j2se/1.4.2/docs/api/javax/security/auth/spi/LoginModule.html">LoginModule</a>
+ architecture. It provides a <a href="login-module.html">DefaultLoginModule</a> implementation and a
+ flexible architecture to be able to authenticate user against multiple user repositories and provide user
+ management capabilities across those repository. A <code>UserManager</code> provides a set of coarsed
+ services for authenticating and managing users. The class diagram below illustrates how the
+ <code>UserManager</code> provides authentication to the <code>DefaultLoginModule</code> and leverages
+ the <a href="atn-spi.html">Authentication SPI</a> to interact with various implementation and user stores.
+ </p>
+ <p>
+ <img src="images/atn-arch-c.gif" border="0" />
+ </p>
+ <p>
+ The various components described above fulfill the following functions:
+ <table>
+ <tr>
+ <th>Component</th>
+ <th>Description</th>
+ </tr>
+ <tr>
+ <td><code>DefaultLoginModule</code></td>
+ <td>Jetspeed 2 default <a href="login-module.html">LoginModule</a> implementation which
+ leverages the <code>authenticate()</code> method of the <code>UserManager</code> to provide
+ authentication against the various <code>AuthenticationProvider</code> implementation currently
+ configured.</td>
+ </tr>
+ <tr>
+ <td><code>UserManager</code></td>
+ <td>Coarsed service providing authentication and user management. The <code>UserManager</code>code>
+ leverages the various <code>AuthenticationProvider</code> implementations exposed to it through
+ the <code>AuthenticationProviderProxy</code> through the <code>SecurityProvider</code>.
+ </td>
+ </tr>
+ <tr>
+ <td><code>SecurityProvider</code></td>
+ <td>Provides access to the security providers exposing SPI implementation to the coarsed security
+ services.
+ </td>
+ </tr>
+ <tr>
+ <td><code>AuthenticationProviderProxy</code></td>
+ <td>A proxy to the various <code>AuthenticationProvider</code> implementations. The <code>AuthenticationProviderProxy</code>
+ is responsible of invoking the correct <code>AuthenticationProvider</code> to authenticate or manage
+ a specific user against a specific data store.</td>
+ </tr>
+ </table>
+ </p>
+ </section>
+
+ </body>
</document>
Propchange: portals/jetspeed-2/trunk/components/security/xdocs/atn.xml
------------------------------------------------------------------------------
svn:eol-style = native
Modified: portals/jetspeed-2/trunk/components/security/xdocs/atz-jaas.xml
URL: http://svn.apache.org/viewcvs/portals/jetspeed-2/trunk/components/security/xdocs/atz-jaas.xml?rev=233183&r1=233182&r2=233183&view=diff
==============================================================================
--- portals/jetspeed-2/trunk/components/security/xdocs/atz-jaas.xml (original)
+++ portals/jetspeed-2/trunk/components/security/xdocs/atz-jaas.xml Wed Aug 17 07:33:31 2005
@@ -1,115 +1,115 @@
-<?xml version="1.0"?>
-<!--
- Copyright 2004 The Apache Software Foundation
-
- Licensed under the Apache License, Version 2.0 (the "License");
- you may not use this file except in compliance with the License.
- You may obtain a copy of the License at
-
- http://www.apache.org/licenses/LICENSE-2.0
-
- Unless required by applicable law or agreed to in writing, software
- distributed under the License is distributed on an "AS IS" BASIS,
- WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- See the License for the specific language governing permissions and
- limitations under the License.
--->
-<document>
- <properties>
- <title>Jetspeed 2 Security - Login Module</title>
- <authors>
- <person name="David Le Strat" email="dlestrat@apache.org" />
- </authors>
- </properties>
- <body>
- <section name="Overview of JAAS Authorization">
- <p>
- A good overview of JAAS authorization is provided on
- <a href="http://java.sun.com/j2se/1.4.2/docs/guide/security/spec/security-spec.doc2.html">Sun's web site</a>.
- At a high level, JAAS authorization leverages:
- <ul>
- <li><a href="http://java.sun.com/j2se/1.4.2/docs/api/java/security/Permission.html">Permission</a>
- that associates actions to resources.</li>
- <li><a href="http://java.sun.com/j2se/1.4.2/docs/api/java/security/Principal.html">Principal</a>
- that represents an entity in the system. In Jetspeed 2, 3 principals are used to represent users,
- roles and groups.</li>
- <li><a href="http://java.sun.com/j2se/1.4.2/docs/api/java/security/Policy.html">Policy</a>
- that associates principals to permissions.</li>
- </ul>
- </p>
- <p>
- Jetspeed 2 provides a custom policy implemention that allow the portal to secure resources as follow:
- <source><![CDATA[
-grant principal o.a.j.security.UserPrincipal "theUserPrincipal" {
- permission o.a.j.security.PagePermission "mypage", "view";
- permission o.a.j.security.PortletPermission "myportlet", "view,edit,minimize,maximize";
- permission o.a.j.security.TabPermission "mytab", "view";
-};
-
-grant principal o.a.j.security.RolePrincipal "theRolePrincipal" {
- permission o.a.j.security.PagePermission "mypage", "view";
- permission o.a.j.security.PortletPermission "myportlet", "view,edit,minimize,maximize";
- permission o.a.j.security.TabPermission "mytab", "view";
-};
-
-grant principal o.a.j.security.GroupPrincipal "theGroupPrincipal" {
- permission o.a.j.security.PagePermission "mypage", "view";
- permission o.a.j.security.PortletPermission "myportlet", "view,edit,minimize,maximize";
- permission o.a.j.security.TabPermission "mytab", "view";
-};]]>
- </source>
- </p>
- <p>
- The custom security policy provides a <code>java.security.Policy</code> implementation that
- stores the association between principals and permissions in a relational database as opposed to
- leveraging the default JDK policy. In the case of Sun's JDK, the default policy is
- <a href="http://java.sun.com/j2se/1.4.2/docs/guide/security/PolicyFiles.html#DefaultImpl">sun.security.provider.PolicyFile</a>
- a file based policy.
- </p>
- <p>
- In the code sample above, the <code>UserPrincipal</code> identify with the <code>Principal.getName()</code>
- "theUserPrincipal" has permission to "view" the page called "mypage", to
- "view,edit,minimize,maximize" the portlet portlet called "myportlet"
- </p>
- <p>
- The <a href="http://java.sun.com/j2se/1.4.2/docs/api/java/security/AccessController.html">AccessController</a>
- validates a <code>Subject</code> permissions. For instance, a page permission check would perform the following
- check:
- <source><![CDATA[
-PagePermission permission = new PagePermission(path, actions);
-AccessController.checkPermission(permission);
- ]]></source>
- </p>
- </section>
- <section name="Jetspeed JAAS Policy">
- <p>
- The <code>RdbmsPolicy</code> implements <code>java.security.Policy</code>. It leverages the
- <code>PermissionManager</code> to get the permissions associated with a given <code>Subject</code>
- principals.
- <source><![CDATA[
-pms.getPermissions(user.getPrincipals());
- ]]></source>
- The class diagram below illustrate the association between the <code>RdbmsPolicy</code> and
- the <code>PermissionManager</code>.
- </p>
- <p>
- A good article on custom policies implementation is available on
- <a href="http://www-106.ibm.com/developerworks/library/j-jaas/?n-j-442">IBM web site</a>.
- </p>
- <p>
- <img src="images/rdbms-policy-c.gif" border="0"/>
- </p>
- <p>
- To get more detail about the implementation of the <code>PermissionManager</code>, see
- <a href="permission.html">PermissionManager Overview</a>.
- </p>
- <p>
- <u>Note:</u> The current <code>RdbmsPolicy</code> manages the policies to apply. It applies <code>RdbmsPolicy</code>
- in conjunction with the default policy configured in the runtime environment.
- Jetspeed 2 should explore providing
- <a href="http://java.sun.com/j2ee/javaacc/index.html">JACC</a> adapters for its custom policy for
- specific application servers.
- </p>
- </section>
- </body>
+<?xml version="1.0"?>
+<!--
+ Copyright 2004 The Apache Software Foundation
+
+ Licensed under the Apache License, Version 2.0 (the "License");
+ you may not use this file except in compliance with the License.
+ You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+-->
+<document>
+ <properties>
+ <title>Jetspeed 2 Security - Login Module</title>
+ <authors>
+ <person name="David Le Strat" email="dlestrat@apache.org" />
+ </authors>
+ </properties>
+ <body>
+ <section name="Overview of JAAS Authorization">
+ <p>
+ A good overview of JAAS authorization is provided on
+ <a href="http://java.sun.com/j2se/1.4.2/docs/guide/security/spec/security-spec.doc2.html">Sun's web site</a>.
+ At a high level, JAAS authorization leverages:
+ <ul>
+ <li><a href="http://java.sun.com/j2se/1.4.2/docs/api/java/security/Permission.html">Permission</a>
+ that associates actions to resources.</li>
+ <li><a href="http://java.sun.com/j2se/1.4.2/docs/api/java/security/Principal.html">Principal</a>
+ that represents an entity in the system. In Jetspeed 2, 3 principals are used to represent users,
+ roles and groups.</li>
+ <li><a href="http://java.sun.com/j2se/1.4.2/docs/api/java/security/Policy.html">Policy</a>
+ that associates principals to permissions.</li>
+ </ul>
+ </p>
+ <p>
+ Jetspeed 2 provides a custom policy implemention that allow the portal to secure resources as follow:
+ <source><![CDATA[
+grant principal o.a.j.security.UserPrincipal "theUserPrincipal" {
+ permission o.a.j.security.PagePermission "mypage", "view";
+ permission o.a.j.security.PortletPermission "myportlet", "view,edit,minimize,maximize";
+ permission o.a.j.security.TabPermission "mytab", "view";
+};
+
+grant principal o.a.j.security.RolePrincipal "theRolePrincipal" {
+ permission o.a.j.security.PagePermission "mypage", "view";
+ permission o.a.j.security.PortletPermission "myportlet", "view,edit,minimize,maximize";
+ permission o.a.j.security.TabPermission "mytab", "view";
+};
+
+grant principal o.a.j.security.GroupPrincipal "theGroupPrincipal" {
+ permission o.a.j.security.PagePermission "mypage", "view";
+ permission o.a.j.security.PortletPermission "myportlet", "view,edit,minimize,maximize";
+ permission o.a.j.security.TabPermission "mytab", "view";
+};]]>
+ </source>
+ </p>
+ <p>
+ The custom security policy provides a <code>java.security.Policy</code> implementation that
+ stores the association between principals and permissions in a relational database as opposed to
+ leveraging the default JDK policy. In the case of Sun's JDK, the default policy is
+ <a href="http://java.sun.com/j2se/1.4.2/docs/guide/security/PolicyFiles.html#DefaultImpl">sun.security.provider.PolicyFile</a>
+ a file based policy.
+ </p>
+ <p>
+ In the code sample above, the <code>UserPrincipal</code> identify with the <code>Principal.getName()</code>
+ "theUserPrincipal" has permission to "view" the page called "mypage", to
+ "view,edit,minimize,maximize" the portlet portlet called "myportlet"
+ </p>
+ <p>
+ The <a href="http://java.sun.com/j2se/1.4.2/docs/api/java/security/AccessController.html">AccessController</a>
+ validates a <code>Subject</code> permissions. For instance, a page permission check would perform the following
+ check:
+ <source><![CDATA[
+PagePermission permission = new PagePermission(path, actions);
+AccessController.checkPermission(permission);
+ ]]></source>
+ </p>
+ </section>
+ <section name="Jetspeed JAAS Policy">
+ <p>
+ The <code>RdbmsPolicy</code> implements <code>java.security.Policy</code>. It leverages the
+ <code>PermissionManager</code> to get the permissions associated with a given <code>Subject</code>
+ principals.
+ <source><![CDATA[
+pms.getPermissions(user.getPrincipals());
+ ]]></source>
+ The class diagram below illustrate the association between the <code>RdbmsPolicy</code> and
+ the <code>PermissionManager</code>.
+ </p>
+ <p>
+ A good article on custom policies implementation is available on
+ <a href="http://www-106.ibm.com/developerworks/library/j-jaas/?n-j-442">IBM web site</a>.
+ </p>
+ <p>
+ <img src="images/rdbms-policy-c.gif" border="0"/>
+ </p>
+ <p>
+ To get more detail about the implementation of the <code>PermissionManager</code>, see
+ <a href="permission.html">PermissionManager Overview</a>.
+ </p>
+ <p>
+ <u>Note:</u> The current <code>RdbmsPolicy</code> manages the policies to apply. It applies <code>RdbmsPolicy</code>
+ in conjunction with the default policy configured in the runtime environment.
+ Jetspeed 2 should explore providing
+ <a href="http://java.sun.com/j2ee/javaacc/index.html">JACC</a> adapters for its custom policy for
+ specific application servers.
+ </p>
+ </section>
+ </body>
</document>
Propchange: portals/jetspeed-2/trunk/components/security/xdocs/atz-jaas.xml
------------------------------------------------------------------------------
svn:eol-style = native
Modified: portals/jetspeed-2/trunk/components/security/xdocs/atz-spi.xml
URL: http://svn.apache.org/viewcvs/portals/jetspeed-2/trunk/components/security/xdocs/atz-spi.xml?rev=233183&r1=233182&r2=233183&view=diff
==============================================================================
--- portals/jetspeed-2/trunk/components/security/xdocs/atz-spi.xml (original)
+++ portals/jetspeed-2/trunk/components/security/xdocs/atz-spi.xml Wed Aug 17 07:33:31 2005
@@ -1,87 +1,87 @@
-<?xml version="1.0"?>
-<!--
- Copyright 2004 The Apache Software Foundation
-
- Licensed under the Apache License, Version 2.0 (the "License");
- you may not use this file except in compliance with the License.
- You may obtain a copy of the License at
-
- http://www.apache.org/licenses/LICENSE-2.0
-
- Unless required by applicable law or agreed to in writing, software
- distributed under the License is distributed on an "AS IS" BASIS,
- WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- See the License for the specific language governing permissions and
- limitations under the License.
--->
-<document>
- <properties>
- <title>Jetspeed 2 Security - Authorization/Security Mapping SPI</title>
- <authors>
- <person name="David Le Strat" email="dlestrat@apache.org" />
- </authors>
- </properties>
- <body>
- <section name="Authorization/Security Mapping SPI Overview">
- <p>
- The authorization SPI provides the implementation to support Jetspeed 2 users, roles and groups associations and the roles/groups hierarchy
- policy. It provides the underlying mechanism to support the implementation of the
- <code>RoleManager</code>
- and
- <code>GroupManager</code>
- .
- </p>
- <p>
- As described in the
- <a href="index.html">security overview</a>
- , Jetspeed support hierarchical role based access control with configurable hierarchy policies.
- </p>
- <p>First, let's have a look at a class diagram of the authorization SPI:</p>
- <p>
- <img src="images/security-mapping-c.gif" border="0" />
- <br />
- <br />
- <img src="images/role-security-handler-c.gif" border="0" />
- <br />
- <br />
- <img src="images/group-security-handler-c.gif" border="0" />
- <br />
- <br />
- </p>
- </section>
- <section name="Authorization SPI Components">
- <p>The authorization SPI implements the following components:</p>
- <table>
- <tr>
- <th>Component</th>
- <th>Description</th>
- </tr>
- <tr>
- <td>org.apache.jetspeed.security.spi.SecurityMappingHandler</td>
- <td>
- See <a href="config.html#security-spi-atz_xml">security-spi-atz.xml</a> configuration.
- </td>
- </tr>
- <tr>
- <td>org.apache.jetspeed.security.HierarchyResolver</td>
- <td>
- See <a href="hierarchy.html">hierarchy management</a>.
- </td>
- </tr>
- <tr>
- <td>org.apache.jetspeed.security.spi.RoleSecurityHandler</td>
- <td>
- See <a href="config.html#security-spi-atz_xml">security-spi-atz.xml</a> configuration.
- </td>
- </tr>
- <tr>
- <td>org.apache.jetspeed.security.spi.GroupSecurityHandler</td>
- <td>
- See <a href="config.html#security-spi-atz_xml">security-spi-atz.xml</a> configuration.
- </td>
- </tr>
-
- </table>
- </section>
- </body>
+<?xml version="1.0"?>
+<!--
+ Copyright 2004 The Apache Software Foundation
+
+ Licensed under the Apache License, Version 2.0 (the "License");
+ you may not use this file except in compliance with the License.
+ You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+-->
+<document>
+ <properties>
+ <title>Jetspeed 2 Security - Authorization/Security Mapping SPI</title>
+ <authors>
+ <person name="David Le Strat" email="dlestrat@apache.org" />
+ </authors>
+ </properties>
+ <body>
+ <section name="Authorization/Security Mapping SPI Overview">
+ <p>
+ The authorization SPI provides the implementation to support Jetspeed 2 users, roles and groups associations and the roles/groups hierarchy
+ policy. It provides the underlying mechanism to support the implementation of the
+ <code>RoleManager</code>
+ and
+ <code>GroupManager</code>
+ .
+ </p>
+ <p>
+ As described in the
+ <a href="index.html">security overview</a>
+ , Jetspeed support hierarchical role based access control with configurable hierarchy policies.
+ </p>
+ <p>First, let's have a look at a class diagram of the authorization SPI:</p>
+ <p>
+ <img src="images/security-mapping-c.gif" border="0" />
+ <br />
+ <br />
+ <img src="images/role-security-handler-c.gif" border="0" />
+ <br />
+ <br />
+ <img src="images/group-security-handler-c.gif" border="0" />
+ <br />
+ <br />
+ </p>
+ </section>
+ <section name="Authorization SPI Components">
+ <p>The authorization SPI implements the following components:</p>
+ <table>
+ <tr>
+ <th>Component</th>
+ <th>Description</th>
+ </tr>
+ <tr>
+ <td>org.apache.jetspeed.security.spi.SecurityMappingHandler</td>
+ <td>
+ See <a href="config.html#security-spi-atz_xml">security-spi-atz.xml</a> configuration.
+ </td>
+ </tr>
+ <tr>
+ <td>org.apache.jetspeed.security.HierarchyResolver</td>
+ <td>
+ See <a href="hierarchy.html">hierarchy management</a>.
+ </td>
+ </tr>
+ <tr>
+ <td>org.apache.jetspeed.security.spi.RoleSecurityHandler</td>
+ <td>
+ See <a href="config.html#security-spi-atz_xml">security-spi-atz.xml</a> configuration.
+ </td>
+ </tr>
+ <tr>
+ <td>org.apache.jetspeed.security.spi.GroupSecurityHandler</td>
+ <td>
+ See <a href="config.html#security-spi-atz_xml">security-spi-atz.xml</a> configuration.
+ </td>
+ </tr>
+
+ </table>
+ </section>
+ </body>
</document>
Propchange: portals/jetspeed-2/trunk/components/security/xdocs/atz-spi.xml
------------------------------------------------------------------------------
svn:eol-style = native
Modified: portals/jetspeed-2/trunk/components/security/xdocs/atz.xml
URL: http://svn.apache.org/viewcvs/portals/jetspeed-2/trunk/components/security/xdocs/atz.xml?rev=233183&r1=233182&r2=233183&view=diff
==============================================================================
--- portals/jetspeed-2/trunk/components/security/xdocs/atz.xml (original)
+++ portals/jetspeed-2/trunk/components/security/xdocs/atz.xml Wed Aug 17 07:33:31 2005
@@ -1,46 +1,46 @@
-<?xml version="1.0"?>
-<!--
- Copyright 2004 The Apache Software Foundation
-
- Licensed under the Apache License, Version 2.0 (the "License");
- you may not use this file except in compliance with the License.
- You may obtain a copy of the License at
-
- http://www.apache.org/licenses/LICENSE-2.0
-
- Unless required by applicable law or agreed to in writing, software
- distributed under the License is distributed on an "AS IS" BASIS,
- WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- See the License for the specific language governing permissions and
- limitations under the License.
--->
-<document>
- <properties>
- <title>Jetspeed 2 Security - Login Module</title>
- <authors>
- <person name="David Le Strat" email="dlestrat@apache.org" />
- </authors>
- </properties>
- <body>
- <section name="Authorization Overview">
- <p>
- For auhorization, Jetspeed 2 implements its own
- <a href="http://java.sun.com/j2se/1.4.2/docs/api/java/security/Policy.html">java.security.Policy</a> using
- a relation database store to manage associations between principals and permissions.
- </p>
- <p align="center">
- <img src="images/rdbms-policy-overview-c.gif" border="0" />
- </p>
- <p>
- The <code>PermissionManager</code> provides access to the permissions associated to given principals.
- </p>
- <p>
- <ul>
- <li>The <a href="atz-jaas.html">JAAS Authorization</a> provides an overview of the authorization aspect of JAAS.</li>
- <li>The <a href="permission.html">PermissionManager Overview</a> documents the <code>PermissionManager</code> implementation.</li>
- </ul>
- </p>
- </section>
-
- </body>
+<?xml version="1.0"?>
+<!--
+ Copyright 2004 The Apache Software Foundation
+
+ Licensed under the Apache License, Version 2.0 (the "License");
+ you may not use this file except in compliance with the License.
+ You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+-->
+<document>
+ <properties>
+ <title>Jetspeed 2 Security - Login Module</title>
+ <authors>
+ <person name="David Le Strat" email="dlestrat@apache.org" />
+ </authors>
+ </properties>
+ <body>
+ <section name="Authorization Overview">
+ <p>
+ For auhorization, Jetspeed 2 implements its own
+ <a href="http://java.sun.com/j2se/1.4.2/docs/api/java/security/Policy.html">java.security.Policy</a> using
+ a relation database store to manage associations between principals and permissions.
+ </p>
+ <p align="center">
+ <img src="images/rdbms-policy-overview-c.gif" border="0" />
+ </p>
+ <p>
+ The <code>PermissionManager</code> provides access to the permissions associated to given principals.
+ </p>
+ <p>
+ <ul>
+ <li>The <a href="atz-jaas.html">JAAS Authorization</a> provides an overview of the authorization aspect of JAAS.</li>
+ <li>The <a href="permission.html">PermissionManager Overview</a> documents the <code>PermissionManager</code> implementation.</li>
+ </ul>
+ </p>
+ </section>
+
+ </body>
</document>
Propchange: portals/jetspeed-2/trunk/components/security/xdocs/atz.xml
------------------------------------------------------------------------------
svn:eol-style = native
Propchange: portals/jetspeed-2/trunk/components/security/xdocs/credentials.xml
------------------------------------------------------------------------------
svn:eol-style = native
---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-dev-unsubscribe@portals.apache.org
For additional commands, e-mail: jetspeed-dev-help@portals.apache.org