geronimo-scm mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject [Apache Geronimo Wiki] Updated: Security
Date Sat, 20 Nov 2004 09:19:48 GMT
   Date: 2004-11-20T01:19:48
   Editor: AaronMulder <>
   Wiki: Apache Geronimo Wiki
   Page: Security

   no comment

Change Log:

@@ -107,4 +107,5 @@
  * Auto-mapping of principals to groups needs to be enhanced (better configuration, etc.)
  * The old functionality to get a list of all available users and groups from a security
realm has been broken.  It needs to be brought back in the form of a helper class that can
be configured on the {{{GenericSecurityRealm}}}.
  * Replace the static registration with {{{GeronimoLoginConfiguration}}} with an IOC assignment
of GLC to each security realm.
+ * Add some kind of fancier validator object to a {{{SecurityRealm}}} that can enforce rules
like "user only valid between 9 and 5".  It can't only reject new logins; it must also terminate
an existing valid login at the appropriate time.  It's not clear how to do this right.  This
would replace the previous ability to set a realm-specific max login duration.
  * We need more tests of all this functionality

View raw message