Clone Tools
  • last updated a few seconds ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
[ELY-1630] Ensure that any blank lines in the PEM certificate chain returned by an ACME server get ignored to avoid parsing issues on IBM JDK

[ELY-1425] Add support for a CallerPrincipalCallback with null Principal and name to establish the anonymous identity.

[ELY-1616] Fix conflicts and port the new test to use certificate generation utilities

  1. … 4 more files in changeset.
[ELY-1425] Update the JASPI AuthenticationContext so we can run in both an integrated mode or an AdHoc mode allowing the ServerAuthModules full control of identity creation.

[ELY-1425] Allow the rolesCategory to be specified for where the ServerAuthModule uses the GroupPrincipalCallback.

[ELY-1425] Rename JaspicConfigurationBuilder to JaspiConfigurationBuilder to be consistent with naming used elsewhere.

[ELY-1425] Make MessageInfo public for accessibility (Still within a private package so not public API).

[ELY-1622] Ensure ConfigurationKeyManager.Builder gets used even when no key-store-ssl-certificate is specified

[ELY-1620] Support of enumerated into ASN1Decoder

    • -0
    • +11
    ./wildfly/security/asn1/ASN1Decoder.java
    • -0
    • +8
    ./wildfly/security/asn1/DERDecoder.java
    • -1
    • +10
    ./wildfly/security/asn1/util/ASN1.java
[ELY-1425] The servlet container integration provides the CallbackHandler which wraps the SecurityDomain of the deployment so a reference to a SecurityDomain is not required here.

[ELY-1617] OCSP tests, SSLAuthenticationTest refac

  1. … 6 more files in changeset.
[ELY-1618] Avoid NPE in Protocol.forName() when the protocol name is null

[ELY-1425] Re-distribute the JASPIC implementation classes allowing for a public / private API split.

    • -0
    • +1
    ./wildfly/security/auth/jaspi/Flag.java
    • -106
    • +0
    ./wildfly/security/auth/jaspi/ElytronMessageInfo.java
  1. … 5 more files in changeset.
[ELY-1618] Make Protocol.forName() case insensitive to allow TLS to work properly when using the Bouncy Castle JSSE provider

[ELY-1616] ldap-key-store requires attribute userPKCS12 on ldap entry, even if it should be mandatory

    • -0
    • +47
    ./wildfly/security/util/LdapUtil.java
  1. … 6 more files in changeset.
[ELY-1425] Add a Delegating AuthConfigFactory implementation that can make use of the Elytron AuthconfigFactory implementation but also optionally fallback to a backup implementation.

Merge pull request #1159 from fjuma/ELY-1604

[ELY-1604] Implement the client side of Let's Encrypt's Automatic Certificate Management Environment (ACME) protocol

Merge pull request #1150 from hkalina/ELY-1596

[ELY-1596] javadoc: required permissions for enabled security manager

Merge pull request #1147 from hkalina/ELY-1287

[ELY-1287] Scope.SSL_SESSION into CLIENT_CERT instead of SSLSession

Merge pull request #1152 from hkalina/ELY-1531

[ELY-1531] runAs operations sync between Scoped/SecurityIdentity and AC

Merge pull request #1155 from hkalina/ELY-1599

[ELY-1599] support of username* into Digest HTTP mechanism

    • -1
    • +1
    ./wildfly/security/http/HttpConstants.java
[ELY-1607] Revise cipher suites exposed by Elytron

    • -0
    • +25
    ./wildfly/security/ssl/Encryption.java
[ELY-1605] ELY05016: Unrecognized token for CCM mode cipher suites

    • -0
    • +20
    ./wildfly/security/ssl/Encryption.java
[ELY-1617] OCSP client into trustmanager

    • -0
    • +239
    ./wildfly/security/ssl/OcspExtendedTrustManager.java
    • -0
    • +150
    ./wildfly/security/x500/cert/ocsp/CertId.java
    • -0
    • +90
    ./wildfly/security/x500/cert/ocsp/OcspCachingChecker.java
    • -0
    • +123
    ./wildfly/security/x500/cert/ocsp/OcspChainVerifier.java
    • -0
    • +45
    ./wildfly/security/x500/cert/ocsp/OcspChecker.java
    • -0
    • +101
    ./wildfly/security/x500/cert/ocsp/OcspOnlineChecker.java
    • -0
    • +126
    ./wildfly/security/x500/cert/ocsp/OcspRequest.java
    • -0
    • +293
    ./wildfly/security/x500/cert/ocsp/OcspResponse.java
    • -0
    • +130
    ./wildfly/security/x500/cert/ocsp/OcspSignatureVerifier.java
    • -0
    • +68
    ./wildfly/security/x500/cert/ocsp/OcspStatus.java
  1. … 1 more file in changeset.
[ELY-1604] Implement the client side of Let's Encrypt's Automatic Certificate Management Environment (ACME) protocol

    • -142
    • +0
    ./wildfly/security/x500/cert/CertUtil.java
    • -0
    • +66
    ./wildfly/security/x500/cert/X509CertificateChainAndSigningKey.java
    • -0
    • +237
    ./wildfly/security/x500/cert/acme/Acme.java
    • -0
    • +514
    ./wildfly/security/x500/cert/acme/AcmeAccount.java
    • -0
    • +171
    ./wildfly/security/x500/cert/acme/AcmeChallenge.java
    • -0
    • +1142
    ./wildfly/security/x500/cert/acme/AcmeClientSpi.java
    • -0
    • +71
    ./wildfly/security/x500/cert/acme/AcmeException.java
    • -0
    • +159
    ./wildfly/security/x500/cert/acme/AcmeMetadata.java
    • -0
    • +51
    ./wildfly/security/x500/cert/acme/AcmeResource.java
    • -0
    • +175
    ./wildfly/security/x500/cert/util/KeyUtil.java
    • -0
    • +23
    ./wildfly/security/x500/cert/util/package-info.java
  1. … 4 more files in changeset.
Merge pull request #1157 from darranl/ELY-1603

[ELY-1603] Add missing HTTP mechanisms to the WildFlyElytronProvider initialisation.

[ELY-1633] Incorrect double checked locking in AuthenticationConfiguration

https://issues.jboss.org/browse/ELY-1633

[ELY-1603] Add missing HTTP mechanisms to the WildFlyElytronProvider initialisation.

[ELY-1599] support of username* into Digest HTTP mechanism

    • -1
    • +1
    ./wildfly/security/http/HttpConstants.java
  1. … 1 more file in changeset.
[ELY-1602] Temporarily add a Pem.generatePemX509Certificate() method that takes the ByteStringBuilder from Elytron as a parameter