You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@geode.apache.org by "Jared Stewart (JIRA)" <ji...@apache.org> on 2017/09/14 21:45:00 UTC

[jira] [Updated] (GEODE-3621) Revert breaking changes in SecurityManager

     [ https://issues.apache.org/jira/browse/GEODE-3621?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Jared Stewart updated GEODE-3621:
---------------------------------
    Description: 
This commit introduced breaking changes to the public SecurityManager API: 
{noformat}
GEODE-2925: add target for resource operation for finer grained security

* add finer authorize* call in security service
* add target to the MXBean authorization check
* use enum type instead of raw strings for resource/operation

f541043 Jinmei Liao <ji...@pivotal.io> on 5/31/17 at 1:50 PM
        committed on 6/12/17 at 11:05 AM
{noformat}

Furthermore, using Enum types restricts us from introducing new security Resources and Operations in the future.  We should revert back to using a String-based SecurityManager API to restore backwards compatibility and permit future extensibility. 

  was:
This commit introduced breaking changes to the public SecurityManager API: 
{noformat}
GEODE-2925: add target for resource operation for finer grained security

* add finer authorize* call in security service
* add target to the MXBean authorization check
* use enum type instead of raw strings for resource/operation

f541043 Jinmei Liao <ji...@pivotal.io> on 5/31/17 at 1:50 PM
        committed on 6/12/17 at 11:05 AM
{noformat}

Furthermore, using Enum types restricts us from introducing new security Resources and Operations in the future.  We should revert back to using a String-based SecurityManager API, restoring backwards compatibility and permitting future extensibility. 


> Revert breaking changes in SecurityManager
> ------------------------------------------
>
>                 Key: GEODE-3621
>                 URL: https://issues.apache.org/jira/browse/GEODE-3621
>             Project: Geode
>          Issue Type: Bug
>          Components: security
>            Reporter: Jared Stewart
>            Assignee: Jared Stewart
>
> This commit introduced breaking changes to the public SecurityManager API: 
> {noformat}
> GEODE-2925: add target for resource operation for finer grained security
> * add finer authorize* call in security service
> * add target to the MXBean authorization check
> * use enum type instead of raw strings for resource/operation
> f541043 Jinmei Liao <ji...@pivotal.io> on 5/31/17 at 1:50 PM
>         committed on 6/12/17 at 11:05 AM
> {noformat}
> Furthermore, using Enum types restricts us from introducing new security Resources and Operations in the future.  We should revert back to using a String-based SecurityManager API to restore backwards compatibility and permit future extensibility. 



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)