Clone Tools
  • last updated 30 mins ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
[ELY-1425] Add TRACE logging to record the roles set by the Callbacks.

[ELY-1647] Add TRACE messages to allow debugging of the loading of the client side configuration.

[ELY-1425] Clean the Subject in reverse order to how it was populated.

[ELY-1425] Where the CallerPrincipalCallback has 'null' values don't establish a new identity.

[ELY-1425] Ensure authorization silently succeeds when non-integrated and using the existing SecurityIdentity.

[ELY-1639] algorithm, provider-name into key-store-ssl-certificate in Elytron XML

  1. … 3 more files in changeset.
[ELY-1639] new client XSD schema version

  1. … 5 more files in changeset.
[ELY-1425] Add secureResponse processing.

[ELY-1425] Additional CallbackHandler clean up to ensure an empty CallerPrincipalCallback only established anonymous if we have no existing identity.

[ELY-1425] Check if the listeners are null before iterating.

[ELY-1425] Update AuthConfigFactory.getConfigProvider to accept null arguments.

[ELY-1425] Rework to use a single CallbackHandler that can operate in integrated and not-integrated mode and rely on the SecurityDomain instead of a ServerAuthenticationContext.

[ELY-1629] Prepare for the upcoming ACME v2 account key roll-over change by sending both the oldKey and the newKey in the inner payload for a key change request

    • -1
    • +2
    ./wildfly/security/x500/cert/acme/Acme.java
  1. … 2 more files in changeset.
[ELY-1637] Change ReferralMode.toString to return value

https://issues.jboss.org/browse/ELY-1637

[ELY-1636] Update AcmeChallenge.Type to be able to handle unknown challenge types

    • -1
    • +1
    ./wildfly/security/http/impl/NonceManager.java
  1. … 1 more file in changeset.
[ELY-1630] Ensure that any blank lines in the PEM certificate chain returned by an ACME server get ignored to avoid parsing issues on IBM JDK

[ELY-1425] Add support for a CallerPrincipalCallback with null Principal and name to establish the anonymous identity.

[ELY-1616] Fix conflicts and port the new test to use certificate generation utilities

  1. … 4 more files in changeset.
[ELY-1425] Update the JASPI AuthenticationContext so we can run in both an integrated mode or an AdHoc mode allowing the ServerAuthModules full control of identity creation.

[ELY-1425] Allow the rolesCategory to be specified for where the ServerAuthModule uses the GroupPrincipalCallback.

[ELY-1425] Rename JaspicConfigurationBuilder to JaspiConfigurationBuilder to be consistent with naming used elsewhere.

[ELY-1425] Make MessageInfo public for accessibility (Still within a private package so not public API).

[ELY-1622] Ensure ConfigurationKeyManager.Builder gets used even when no key-store-ssl-certificate is specified

[ELY-1620] Support of enumerated into ASN1Decoder

    • -0
    • +11
    ./wildfly/security/asn1/ASN1Decoder.java
    • -0
    • +8
    ./wildfly/security/asn1/DERDecoder.java
    • -1
    • +10
    ./wildfly/security/asn1/util/ASN1.java
[ELY-1425] The servlet container integration provides the CallbackHandler which wraps the SecurityDomain of the deployment so a reference to a SecurityDomain is not required here.

[ELY-1617] OCSP tests, SSLAuthenticationTest refac

  1. … 6 more files in changeset.
[ELY-1618] Avoid NPE in Protocol.forName() when the protocol name is null