You are viewing a plain text version of this content. The canonical link for it is here.
Posted to jetspeed-dev@portals.apache.org by ta...@apache.org on 2016/01/15 02:11:22 UTC
svn commit: r1724714 - in /portals/jetspeed-2/portal/trunk:
jetspeed-api/src/main/java/org/apache/jetspeed/administration/PortalConfigurationConstants.java
jetspeed-portal-resources/src/main/resources/conf/jetspeed/jetspeed.properties
Author: taylor
Date: Fri Jan 15 01:11:21 2016
New Revision: 1724714
URL: http://svn.apache.org/viewvc?rev=1724714&view=rev
Log:
fixing backward compatibility issue with migrating from version 2.1.3, which allowed more lenient delegated security assignments. Note this feature should be turned off by default
Modified:
portals/jetspeed-2/portal/trunk/jetspeed-api/src/main/java/org/apache/jetspeed/administration/PortalConfigurationConstants.java
portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/jetspeed/jetspeed.properties
Modified: portals/jetspeed-2/portal/trunk/jetspeed-api/src/main/java/org/apache/jetspeed/administration/PortalConfigurationConstants.java
URL: http://svn.apache.org/viewvc/portals/jetspeed-2/portal/trunk/jetspeed-api/src/main/java/org/apache/jetspeed/administration/PortalConfigurationConstants.java?rev=1724714&r1=1724713&r2=1724714&view=diff
==============================================================================
--- portals/jetspeed-2/portal/trunk/jetspeed-api/src/main/java/org/apache/jetspeed/administration/PortalConfigurationConstants.java (original)
+++ portals/jetspeed-2/portal/trunk/jetspeed-api/src/main/java/org/apache/jetspeed/administration/PortalConfigurationConstants.java Fri Jan 15 01:11:21 2016
@@ -72,7 +72,8 @@ public interface PortalConfigurationCons
static final String ROLES_DEFAULT_MANAGER = "default.manager.role";
static final String ROLES_DEFAULT_USER = "default.user.role";
static final String ROLES_DEFAULT_GUEST = "default.guest.role";
-
+ static final String ALLOW_DELEGATE_ASSIGN_ROLES = "allow.delegate.assign.roles";
+
/** Jetui */
static final String JETUI_CUSTOMIZATION_METHOD = "jetui.customization.method";
static final String JETUI_CUSTOMIZATION_SERVER = "server";
Modified: portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/jetspeed/jetspeed.properties
URL: http://svn.apache.org/viewvc/portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/jetspeed/jetspeed.properties?rev=1724714&r1=1724713&r2=1724714&view=diff
==============================================================================
--- portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/jetspeed/jetspeed.properties (original)
+++ portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/jetspeed/jetspeed.properties Fri Jan 15 01:11:21 2016
@@ -103,8 +103,8 @@ supported.windowstate.additional.default
# -------------------------------------------------------------------
# Portlet Container Runtime Options
# -------------------------------------------------------------------
-container.supported.runtimeOption=escapeXML
-container.supported.runtimeOption=javax.portlet.servletDefaultSessionScope
+container.supported.runtimeOption=escapeXML
+container.supported.runtimeOption=javax.portlet.servletDefaultSessionScope
# -------------------------------------------------------------------
# Security Information
@@ -118,6 +118,9 @@ default.admin.role=admin
default.manager.role=manager
default.user.role=user
default.guest.role=guest
+# some systems require delegated admins to assign roles and groups without owning the roles or groups
+# this setting should be used carefully
+allow.delegate.assign.roles=false
# -------------------------------------------------------------------
# L O G 4 J - L O G G I N G
---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-dev-unsubscribe@portals.apache.org
For additional commands, e-mail: jetspeed-dev-help@portals.apache.org