You are viewing a plain text version of this content. The canonical link for it is here.
Posted to sandesha-dev@ws.apache.org by "Matt Lovett (JIRA)" <ji...@apache.org> on 2006/07/17 11:38:13 UTC
[jira] Created: (SANDESHA2-16) Enable composition with Security
Enable composition with Security
--------------------------------
Key: SANDESHA2-16
URL: http://issues.apache.org/jira/browse/SANDESHA2-16
Project: Apache Sandesha2
Issue Type: New Feature
Reporter: Matt Lovett
The WS-RM 1.0 spec defines composition between the RM and Security layers, to allow a Sequence to be protected against hijack. I would like to implement this capability in sandesha 2 java.
To allow plugable security providers, I will define a SecurityManager interface. This is logically similar to the StorageManager - the interface will define the methods that the mainline RM code needs to do it's job, and pepole can plug in implementations that map onto their security infrastructure.
There will be a few code drops to get it all in - I'll try to reach a consistent state each time!
Matt
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: sandesha-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: sandesha-dev-help@ws.apache.org
[jira] Updated: (SANDESHA2-16) Enable composition with Security
Posted by "Matt Lovett (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/SANDESHA2-16?page=all ]
Matt Lovett updated SANDESHA2-16:
---------------------------------
Attachment: security2.patch
This patch restores the security checks for AckRequests, SequenceAcks, and Sequence headers.
Thanks,
Matt
> Enable composition with Security
> --------------------------------
>
> Key: SANDESHA2-16
> URL: http://issues.apache.org/jira/browse/SANDESHA2-16
> Project: Apache Sandesha2
> Issue Type: New Feature
> Reporter: Matt Lovett
> Attachments: security.patch, security.patch, security2.patch
>
>
> The WS-RM 1.0 spec defines composition between the RM and Security layers, to allow a Sequence to be protected against hijack. I would like to implement this capability in sandesha 2 java.
> To allow plugable security providers, I will define a SecurityManager interface. This is logically similar to the StorageManager - the interface will define the methods that the mainline RM code needs to do it's job, and pepole can plug in implementations that map onto their security infrastructure.
> There will be a few code drops to get it all in - I'll try to reach a consistent state each time!
> Matt
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: sandesha-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: sandesha-dev-help@ws.apache.org
[jira] Updated: (SANDESHA2-16) Enable composition with Security
Posted by "Matt Lovett (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/SANDESHA2-16?page=all ]
Matt Lovett updated SANDESHA2-16:
---------------------------------
Attachment: security.patch
Here's an updated patch, with the SecurityManager interface changes as discussed on-list. When you apply the patch you might get 2 hunks failing because of missing newlines at the end of Sandesha2Constants.java and CreateSeqBean.java - it depends how smart your patch tool is. If it does fail then fixing up by hand is trivial.
Thanks
Matt
> Enable composition with Security
> --------------------------------
>
> Key: SANDESHA2-16
> URL: http://issues.apache.org/jira/browse/SANDESHA2-16
> Project: Apache Sandesha2
> Issue Type: New Feature
> Reporter: Matt Lovett
> Attachments: security.patch, security.patch
>
>
> The WS-RM 1.0 spec defines composition between the RM and Security layers, to allow a Sequence to be protected against hijack. I would like to implement this capability in sandesha 2 java.
> To allow plugable security providers, I will define a SecurityManager interface. This is logically similar to the StorageManager - the interface will define the methods that the mainline RM code needs to do it's job, and pepole can plug in implementations that map onto their security infrastructure.
> There will be a few code drops to get it all in - I'll try to reach a consistent state each time!
> Matt
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: sandesha-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: sandesha-dev-help@ws.apache.org
[jira] Resolved: (SANDESHA2-16) Enable composition with Security
Posted by "Chamikara Jayalath (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/SANDESHA2-16?page=all ]
Chamikara Jayalath resolved SANDESHA2-16.
-----------------------------------------
Resolution: Fixed
> Enable composition with Security
> --------------------------------
>
> Key: SANDESHA2-16
> URL: http://issues.apache.org/jira/browse/SANDESHA2-16
> Project: Apache Sandesha2
> Issue Type: New Feature
> Reporter: Matt Lovett
> Attachments: security.patch, security.patch, security2.patch
>
>
> The WS-RM 1.0 spec defines composition between the RM and Security layers, to allow a Sequence to be protected against hijack. I would like to implement this capability in sandesha 2 java.
> To allow plugable security providers, I will define a SecurityManager interface. This is logically similar to the StorageManager - the interface will define the methods that the mainline RM code needs to do it's job, and pepole can plug in implementations that map onto their security infrastructure.
> There will be a few code drops to get it all in - I'll try to reach a consistent state each time!
> Matt
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: sandesha-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: sandesha-dev-help@ws.apache.org
[jira] Commented: (SANDESHA2-16) Enable composition with Security
Posted by "Chamikara Jayalath (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/SANDESHA2-16?page=comments#action_12424540 ]
Chamikara Jayalath commented on SANDESHA2-16:
---------------------------------------------
Applied. Thanks.
Chamikara
> Enable composition with Security
> --------------------------------
>
> Key: SANDESHA2-16
> URL: http://issues.apache.org/jira/browse/SANDESHA2-16
> Project: Apache Sandesha2
> Issue Type: New Feature
> Reporter: Matt Lovett
> Attachments: security.patch, security.patch
>
>
> The WS-RM 1.0 spec defines composition between the RM and Security layers, to allow a Sequence to be protected against hijack. I would like to implement this capability in sandesha 2 java.
> To allow plugable security providers, I will define a SecurityManager interface. This is logically similar to the StorageManager - the interface will define the methods that the mainline RM code needs to do it's job, and pepole can plug in implementations that map onto their security infrastructure.
> There will be a few code drops to get it all in - I'll try to reach a consistent state each time!
> Matt
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: sandesha-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: sandesha-dev-help@ws.apache.org
[jira] Commented: (SANDESHA2-16) Enable composition with Security
Posted by "Chamikara Jayalath (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/SANDESHA2-16?page=comments#action_12438881 ]
Chamikara Jayalath commented on SANDESHA2-16:
---------------------------------------------
Applied the patch.
Chamikara
> Enable composition with Security
> --------------------------------
>
> Key: SANDESHA2-16
> URL: http://issues.apache.org/jira/browse/SANDESHA2-16
> Project: Apache Sandesha2
> Issue Type: New Feature
> Reporter: Matt Lovett
> Attachments: security.patch, security.patch, security2.patch
>
>
> The WS-RM 1.0 spec defines composition between the RM and Security layers, to allow a Sequence to be protected against hijack. I would like to implement this capability in sandesha 2 java.
> To allow plugable security providers, I will define a SecurityManager interface. This is logically similar to the StorageManager - the interface will define the methods that the mainline RM code needs to do it's job, and pepole can plug in implementations that map onto their security infrastructure.
> There will be a few code drops to get it all in - I'll try to reach a consistent state each time!
> Matt
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: sandesha-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: sandesha-dev-help@ws.apache.org
[jira] Updated: (SANDESHA2-16) Enable composition with Security
Posted by "Matt Lovett (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/SANDESHA2-16?page=all ]
Matt Lovett updated SANDESHA2-16:
---------------------------------
Attachment: security.patch
Here's an updated patch, with the SecurityManager interface changes as discussed on-list. When you apply the patch you might get 2 hunks failing because of missing newlines at the end of Sandesha2Constants.java and CreateSeqBean.java - it depends how smart your patch tool is. If it does fail then fixing up by hand is trivial.
Thanks
Matt
> Enable composition with Security
> --------------------------------
>
> Key: SANDESHA2-16
> URL: http://issues.apache.org/jira/browse/SANDESHA2-16
> Project: Apache Sandesha2
> Issue Type: New Feature
> Reporter: Matt Lovett
> Attachments: security.patch, security.patch
>
>
> The WS-RM 1.0 spec defines composition between the RM and Security layers, to allow a Sequence to be protected against hijack. I would like to implement this capability in sandesha 2 java.
> To allow plugable security providers, I will define a SecurityManager interface. This is logically similar to the StorageManager - the interface will define the methods that the mainline RM code needs to do it's job, and pepole can plug in implementations that map onto their security infrastructure.
> There will be a few code drops to get it all in - I'll try to reach a consistent state each time!
> Matt
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: sandesha-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: sandesha-dev-help@ws.apache.org
[jira] Commented: (SANDESHA2-16) Enable composition with Security
Posted by "Chamikara Jayalath (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/SANDESHA2-16?page=comments#action_12424540 ]
Chamikara Jayalath commented on SANDESHA2-16:
---------------------------------------------
Applied. Thanks.
Chamikara
> Enable composition with Security
> --------------------------------
>
> Key: SANDESHA2-16
> URL: http://issues.apache.org/jira/browse/SANDESHA2-16
> Project: Apache Sandesha2
> Issue Type: New Feature
> Reporter: Matt Lovett
> Attachments: security.patch, security.patch
>
>
> The WS-RM 1.0 spec defines composition between the RM and Security layers, to allow a Sequence to be protected against hijack. I would like to implement this capability in sandesha 2 java.
> To allow plugable security providers, I will define a SecurityManager interface. This is logically similar to the StorageManager - the interface will define the methods that the mainline RM code needs to do it's job, and pepole can plug in implementations that map onto their security infrastructure.
> There will be a few code drops to get it all in - I'll try to reach a consistent state each time!
> Matt
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: sandesha-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: sandesha-dev-help@ws.apache.org
[jira] Updated: (SANDESHA2-16) Enable composition with Security
Posted by "Matt Lovett (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/SANDESHA2-16?page=all ]
Matt Lovett updated SANDESHA2-16:
---------------------------------
Attachment: security.patch
Here's a patch that puts the basic security integration code into Sandesha. There isn't a real implementation (yet) but it defines the security manager interface.
> Enable composition with Security
> --------------------------------
>
> Key: SANDESHA2-16
> URL: http://issues.apache.org/jira/browse/SANDESHA2-16
> Project: Apache Sandesha2
> Issue Type: New Feature
> Reporter: Matt Lovett
> Attachments: security.patch
>
>
> The WS-RM 1.0 spec defines composition between the RM and Security layers, to allow a Sequence to be protected against hijack. I would like to implement this capability in sandesha 2 java.
> To allow plugable security providers, I will define a SecurityManager interface. This is logically similar to the StorageManager - the interface will define the methods that the mainline RM code needs to do it's job, and pepole can plug in implementations that map onto their security infrastructure.
> There will be a few code drops to get it all in - I'll try to reach a consistent state each time!
> Matt
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: sandesha-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: sandesha-dev-help@ws.apache.org
[jira] Updated: (SANDESHA2-16) Enable composition with Security
Posted by "Matt Lovett (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/SANDESHA2-16?page=all ]
Matt Lovett updated SANDESHA2-16:
---------------------------------
Attachment: security2.patch
This patch restores the security checks for AckRequests, SequenceAcks, and Sequence headers.
Thanks,
Matt
> Enable composition with Security
> --------------------------------
>
> Key: SANDESHA2-16
> URL: http://issues.apache.org/jira/browse/SANDESHA2-16
> Project: Apache Sandesha2
> Issue Type: New Feature
> Reporter: Matt Lovett
> Attachments: security.patch, security.patch, security2.patch
>
>
> The WS-RM 1.0 spec defines composition between the RM and Security layers, to allow a Sequence to be protected against hijack. I would like to implement this capability in sandesha 2 java.
> To allow plugable security providers, I will define a SecurityManager interface. This is logically similar to the StorageManager - the interface will define the methods that the mainline RM code needs to do it's job, and pepole can plug in implementations that map onto their security infrastructure.
> There will be a few code drops to get it all in - I'll try to reach a consistent state each time!
> Matt
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: sandesha-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: sandesha-dev-help@ws.apache.org
[jira] Resolved: (SANDESHA2-16) Enable composition with Security
Posted by "Chamikara Jayalath (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/SANDESHA2-16?page=all ]
Chamikara Jayalath resolved SANDESHA2-16.
-----------------------------------------
Resolution: Fixed
> Enable composition with Security
> --------------------------------
>
> Key: SANDESHA2-16
> URL: http://issues.apache.org/jira/browse/SANDESHA2-16
> Project: Apache Sandesha2
> Issue Type: New Feature
> Reporter: Matt Lovett
> Attachments: security.patch, security.patch, security2.patch
>
>
> The WS-RM 1.0 spec defines composition between the RM and Security layers, to allow a Sequence to be protected against hijack. I would like to implement this capability in sandesha 2 java.
> To allow plugable security providers, I will define a SecurityManager interface. This is logically similar to the StorageManager - the interface will define the methods that the mainline RM code needs to do it's job, and pepole can plug in implementations that map onto their security infrastructure.
> There will be a few code drops to get it all in - I'll try to reach a consistent state each time!
> Matt
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: sandesha-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: sandesha-dev-help@ws.apache.org
[jira] Updated: (SANDESHA2-16) Enable composition with Security
Posted by "Matt Lovett (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/SANDESHA2-16?page=all ]
Matt Lovett updated SANDESHA2-16:
---------------------------------
Attachment: security.patch
Here's a patch that puts the basic security integration code into Sandesha. There isn't a real implementation (yet) but it defines the security manager interface.
> Enable composition with Security
> --------------------------------
>
> Key: SANDESHA2-16
> URL: http://issues.apache.org/jira/browse/SANDESHA2-16
> Project: Apache Sandesha2
> Issue Type: New Feature
> Reporter: Matt Lovett
> Attachments: security.patch
>
>
> The WS-RM 1.0 spec defines composition between the RM and Security layers, to allow a Sequence to be protected against hijack. I would like to implement this capability in sandesha 2 java.
> To allow plugable security providers, I will define a SecurityManager interface. This is logically similar to the StorageManager - the interface will define the methods that the mainline RM code needs to do it's job, and pepole can plug in implementations that map onto their security infrastructure.
> There will be a few code drops to get it all in - I'll try to reach a consistent state each time!
> Matt
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: sandesha-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: sandesha-dev-help@ws.apache.org
[jira] Commented: (SANDESHA2-16) Enable composition with Security
Posted by "Chamikara Jayalath (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/SANDESHA2-16?page=comments#action_12438881 ]
Chamikara Jayalath commented on SANDESHA2-16:
---------------------------------------------
Applied the patch.
Chamikara
> Enable composition with Security
> --------------------------------
>
> Key: SANDESHA2-16
> URL: http://issues.apache.org/jira/browse/SANDESHA2-16
> Project: Apache Sandesha2
> Issue Type: New Feature
> Reporter: Matt Lovett
> Attachments: security.patch, security.patch, security2.patch
>
>
> The WS-RM 1.0 spec defines composition between the RM and Security layers, to allow a Sequence to be protected against hijack. I would like to implement this capability in sandesha 2 java.
> To allow plugable security providers, I will define a SecurityManager interface. This is logically similar to the StorageManager - the interface will define the methods that the mainline RM code needs to do it's job, and pepole can plug in implementations that map onto their security infrastructure.
> There will be a few code drops to get it all in - I'll try to reach a consistent state each time!
> Matt
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: sandesha-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: sandesha-dev-help@ws.apache.org