Return-Path: Delivered-To: apmail-geronimo-dev-archive@www.apache.org Received: (qmail 4201 invoked from network); 20 Nov 2006 15:51:18 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 20 Nov 2006 15:51:18 -0000 Received: (qmail 72996 invoked by uid 500); 20 Nov 2006 15:51:14 -0000 Delivered-To: apmail-geronimo-dev-archive@geronimo.apache.org Received: (qmail 72938 invoked by uid 500); 20 Nov 2006 15:51:14 -0000 Mailing-List: contact dev-help@geronimo.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: dev@geronimo.apache.org List-Id: Delivered-To: mailing list dev@geronimo.apache.org Received: (qmail 72870 invoked by uid 99); 20 Nov 2006 15:51:13 -0000 Received: from herse.apache.org (HELO herse.apache.org) (140.211.11.133) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 20 Nov 2006 07:51:13 -0800 X-ASF-Spam-Status: No, hits=3.5 required=10.0 tests=FROM_HAS_MIXED_NUMS,HTML_MESSAGE,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (herse.apache.org: domain of c1vamsi1c@gmail.com designates 64.233.182.188 as permitted sender) Received: from [64.233.182.188] (HELO nf-out-0910.google.com) (64.233.182.188) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 20 Nov 2006 07:51:00 -0800 Received: by nf-out-0910.google.com with SMTP id x37so2016693nfc for ; Mon, 20 Nov 2006 07:50:38 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type; b=losscEoBFFBjFEex0jiFFkd6nLoJ7VEhTPpfC56Kf5Yz6H7kzFoS2Y8wyoJXJs8sN3kXXSVjOLZ711FPEgwUPOo6ZHsv0vH9LyaAjZTvp1bVs2XOxT/kTpnySIk5P9VSAEogplI9KgIZdMdMclovn+oO1i/wPFSpOLELt1mi2Ps= Received: by 10.49.8.1 with SMTP id l1mr6523902nfi.1164037836380; Mon, 20 Nov 2006 07:50:36 -0800 (PST) Received: by 10.49.6.4 with HTTP; Mon, 20 Nov 2006 07:50:36 -0800 (PST) Message-ID: <22d56c4d0611200750y2321283u3cf55214c8c6d57e@mail.gmail.com> Date: Mon, 20 Nov 2006 21:20:36 +0530 From: "Vamsavardhana Reddy" To: Dev-list Subject: Name for administrative security realm MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_15865_12770478.1164037836342" X-Virus-Checked: Checked by ClamAV on apache.org ------=_Part_15865_12770478.1164037836342 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline How about the name "geronimo-admin-realm" for administrative security realm? If there are no objections to this, I will apply the patch in 48 hours. --vamsi ---------- Forwarded message ---------- From: Vamsavardhana Reddy (JIRA) Date: Nov 19, 2006 1:31 AM Subject: [jira] Updated: (GERONIMO-931) Rename administrative security realm To: c1vamsi1c@gmail.com [ http://issues.apache.org/jira/browse/GERONIMO-931?page=all ] Vamsavardhana Reddy updated GERONIMO-931: ----------------------------------------- Attachment: GERONIMO-931.patch GERONIMO-931.patch: Renames administrative security realm to "admin-realm". After building branches\1.2 with the patch applied, I have done the following verification: 1. Login to admin console successfully 2. Add a new user using Console Realm portlet and add this user to "admin" group 3. Deploy an application using command line deploy tool using the newly added user credentials 3. Redeploy the application using credentials system/manager > Rename administrative security realm > ------------------------------------ > > Key: GERONIMO-931 > URL: http://issues.apache.org/jira/browse/GERONIMO-931 > Project: Geronimo > Issue Type: Improvement > Security Level: public(Regular issues) > Components: console, security > Affects Versions: 1.0-M4 > Reporter: Aaron Mulder > Assigned To: Vamsavardhana Reddy > Fix For: 1.2, 2.0 > > Attachments: GERONIMO-931.patch > > > It would be best if the administrative security realm (and login domain) was named "AdminRealm" or something so it would be more convenient to replace it. Currently it's called "properties-login" and "geronimo-properties-realm" and so on. Which makes it pretty awkward to replace it with a database-based realm, for example. > This change needs to propogate to web apps including the console. I'm not sure how the remote JMX access handles authentication (as in, for the deploy tool), but presumably that would also need to be switched. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira ------=_Part_15865_12770478.1164037836342 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline How about the name "geronimo-admin-realm" for administrative security realm?  If there are no objections to this, I will apply the patch in 48 hours.

--vamsi

---------- Forwarded message ----------
From: Vamsavardhana Reddy (JIRA) <jira@apache.org>
Date: Nov 19, 2006 1:31 AM
Subject: [jira] Updated: (GERONIMO-931) Rename administrative security realm
To: c1vamsi1c@gmail.com

     [ http://issues.apache.org/jira/browse/GERONIMO-931?page=all ]

Vamsavardhana Reddy updated GERONIMO-931:
-----------------------------------------

    Attachment: GERONIMO-931.patch

GERONIMO-931.patch :  Renames administrative security realm to "admin-realm".

After building branches\1.2 with the patch applied, I have done the following verification:

1.  Login to admin console successfully
2.  Add a new user using Console Realm portlet and add this user to "admin" group
3.  Deploy an application using command line deploy tool using the newly added user credentials
3.  Redeploy the application using credentials system/manager

> Rename administrative security realm
> ------------------------------------
>
>                 Key: GERONIMO-931
>                 URL: http://issues.apache.org/jira/browse/GERONIMO-931
>             Project: Geronimo
>          Issue Type: Improvement
>      Security Level: public(Regular issues)
>          Components: console, security
>    Affects Versions: 1.0-M4
>            Reporter: Aaron Mulder
>         Assigned To: Vamsavardhana Reddy
>             Fix For: 1.2, 2.0
>
>         Attachments: GERONIMO-931.patch
>
>
> It would be best if the administrative security realm (and login domain) was named "AdminRealm" or something so it would be more convenient to replace it.  Currently it's called "properties-login" and "geronimo-properties-realm" and so on.  Which makes it pretty awkward to replace it with a database-based realm, for example.
> This change needs to propogate to web apps including the console.  I'm not sure how the remote JMX access handles authentication (as in, for the deploy tool), but presumably that would also need to be switched.

--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira


------=_Part_15865_12770478.1164037836342--