• last updated a few seconds ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
[SECURITY-749] LdapExtLoginModule cannot cope with roles contains a slash - fixed
[WFLY-1668] Cache passwords from external source for LdapExtLoginModule doesn't work with {EXTC}

Call fixed.

SECURITY-731, SECURITY-732: JASPICallbackHandler now merges roles and subjects retrieved from Callbacks with those found in the underlying security context. Previous behavior was to override the security context completely
    • -11
    • +45
    ./callback/JASPICallbackHandler.java
  1. … 1 more file in changeset.
[AS7-5737] Fixed referrals traversal for roles stored in LDAP referral.
[AS7-5737] allowReferralsForAuth option removed as we are not supporting username/password in referrals
[JBPAPP6-1704] Changing default of allow empty passwords to false.
[AS7-5737] Changes to handle LDAP referrals correctly. Use javax.naming.referral=follow as login module option to have the smoothest behavior.

Set "allowReferralsForAuth" true|false for handling roles which reside in referral's tree.

    • -70
    • +121
    ./spi/LdapExtLoginModule.java
SECURITY-703 Change log level of failed login attemps to DEBUG
  1. … 3 more files in changeset.
SECURITY-665: Added passwordIsA1Hash option to the set of valid options in UsernamePasswordLoginModule
    • -2
    • +3
    ./spi/UsernamePasswordLoginModule.java
[SECURITY-638] security modules option check
  1. … 2 more files in changeset.
Fixed regressions in AS tests
    • -16
    • +11
    ./spi/UsernamePasswordLoginModule.java
SECURITY-680: fixed AbstractServerLM.commit() to only create a caller principal group if the call to getRoleSets() didn't do it first.
    • -25
    • +15
    ./spi/AbstractServerLoginModule.java
  1. … 1 more file in changeset.
SECURITY-660: converted picketbox to use i18n logging and exceptions
    • -15
    • +9
    ./callback/DatabaseCallbackHandler.java
    • -65
    • +29
    ./callback/LdapCallbackHandler.java
    • -2
    • +2
    ./callback/SecurityAssociationHandler.java
    • -2
    • +2
    ./callback/UsernamePasswordHandler.java
    • -9
    • +9
    ./container/config/AuthModuleEntry.java
    • -9
    • +2
    ./container/modules/DelegatingServerAuthModule.java
    • -4
    • +4
    ./container/modules/HttpServletServerAuthModule.java
  1. … 221 more files in changeset.
check if a jboss module has been specified when instantiating the JASPI auth modules
    • -7
    • +56
    ./message/config/SecurityActions.java
Fix JASPICallbackHandler to add authenticated principal to Subject. Synchronize access to the identities set in SubjectInfo
  1. … 1 more file in changeset.
[SECURITY-638] login module option checks
    • -11
    • +28
    ./spi/DatabaseServerLoginModule.java
    • -2
    • +12
    ./spi/MemoryUsersRolesLoginModule.java
  1. … 5 more files in changeset.
[SECURITY-638] login module option checks
    • -5
    • +61
    ./spi/AbstractServerLoginModule.java
SECURITY-648: files, streams need to be closed
    • -1
    • +14
    ./spi/UsernamePasswordLoginModule.java
    • -1
    • +18
    ./spi/otp/JBossTimeBasedOTPLoginModule.java
  1. … 13 more files in changeset.
SECURITY-625: retrofit login modules with vault
    • -0
    • +16
    ./spi/UsernamePasswordLoginModule.java
  1. … 3 more files in changeset.
SECURITY-467: SECURITY-470: db and ldap callback handlers
    • -3
    • +16
    ./callback/DatabaseCallbackHandler.java
    • -0
    • +100
    ./callback/DecodeAction.java
    • -0
    • +534
    ./callback/LdapCallbackHandler.java
    • -0
    • +66
    ./callback/VerifyPasswordCallback.java
  1. … 2 more files in changeset.
changes to database cbh
    • -0
    • +64
    ./callback/AbstractCallbackHandler.java
    • -44
    • +71
    ./callback/DatabaseCallbackHandler.java
  1. … 1 more file in changeset.
SECURITY-467: cbh using DB
    • -0
    • +16
    ./callback/DatabaseCallbackHandler.java
  1. … 1 more file in changeset.
SECURITY-467: cbh using DB
    • -0
    • +361
    ./callback/DatabaseCallbackHandler.java
  1. … 3 more files in changeset.
SECURITY-609: error codes for exception messages
    • -1
    • +3
    ./callback/SecurityAssociationHandler.java
    • -2
    • +4
    ./callback/UsernamePasswordHandler.java
    • -4
    • +5
    ./container/config/AuthModuleEntry.java
    • -1
    • +2
    ./container/modules/DelegatingServerAuthModule.java
    • -3
    • +4
    ./container/modules/HttpServletServerAuthModule.java
  1. … 111 more files in changeset.
callbacks for digest authentication
    • -4
    • +5
    ./callback/CallbackHandlerPolicyContextHandler.java
  1. … 1 more file in changeset.
callbacks for digest authentication
callbacks for digest authentication
    • -0
    • +80
    ./callback/DigestCallbackHandler.java
    • -0
    • +363
    ./callback/RFC2617Digest.java
Fixes for the JASPI implementation as required by the TCK JASPI tests
    • -24
    • +22
    ./message/config/JBossAuthConfigFactory.java
  1. … 4 more files in changeset.
SECURITY-621: Updated JASPI dependency and adapted code to the new API
    • -304
    • +0
    ./message/config/AuthProviderRegistrationDelegate.java
    • -88
    • +298
    ./message/config/JBossAuthConfigFactory.java
  1. … 8 more files in changeset.
removing common-core dependency from the implementation
  1. … 23 more files in changeset.