geode-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Jared Stewart (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (GEODE-3621) Revert breaking changes in SecurityManager
Date Thu, 14 Sep 2017 21:45:00 GMT

     [ https://issues.apache.org/jira/browse/GEODE-3621?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Jared Stewart updated GEODE-3621:
---------------------------------
    Description: 
This commit introduced breaking changes to the public SecurityManager API: 
{noformat}
GEODE-2925: add target for resource operation for finer grained security

* add finer authorize* call in security service
* add target to the MXBean authorization check
* use enum type instead of raw strings for resource/operation

f541043 Jinmei Liao <jiliao@pivotal.io> on 5/31/17 at 1:50 PM
        committed on 6/12/17 at 11:05 AM
{noformat}

Furthermore, using Enum types restricts us from introducing new security Resources and Operations
in the future.  We should revert back to using a String-based SecurityManager API to restore
backwards compatibility and permit future extensibility. 

  was:
This commit introduced breaking changes to the public SecurityManager API: 
{noformat}
GEODE-2925: add target for resource operation for finer grained security

* add finer authorize* call in security service
* add target to the MXBean authorization check
* use enum type instead of raw strings for resource/operation

f541043 Jinmei Liao <jiliao@pivotal.io> on 5/31/17 at 1:50 PM
        committed on 6/12/17 at 11:05 AM
{noformat}

Furthermore, using Enum types restricts us from introducing new security Resources and Operations
in the future.  We should revert back to using a String-based SecurityManager API, restoring
backwards compatibility and permitting future extensibility. 


> Revert breaking changes in SecurityManager
> ------------------------------------------
>
>                 Key: GEODE-3621
>                 URL: https://issues.apache.org/jira/browse/GEODE-3621
>             Project: Geode
>          Issue Type: Bug
>          Components: security
>            Reporter: Jared Stewart
>            Assignee: Jared Stewart
>
> This commit introduced breaking changes to the public SecurityManager API: 
> {noformat}
> GEODE-2925: add target for resource operation for finer grained security
> * add finer authorize* call in security service
> * add target to the MXBean authorization check
> * use enum type instead of raw strings for resource/operation
> f541043 Jinmei Liao <jiliao@pivotal.io> on 5/31/17 at 1:50 PM
>         committed on 6/12/17 at 11:05 AM
> {noformat}
> Furthermore, using Enum types restricts us from introducing new security Resources and
Operations in the future.  We should revert back to using a String-based SecurityManager API
to restore backwards compatibility and permit future extensibility. 



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

Mime
View raw message