Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-3906

Add information about jboss-permissions.xml to New features section in the Release notes

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Critical
    • 7.0.0.ER7
    • 7.0.0.ER7
    • Documentation
    • None

    Description

      Book: Release notes
      Revision: n_2202663_700-release-notes_version_7.0_edition_1.0_release_0-revision_7877113

      Issue description:
      There is missing information about new Security Manager features.

      JEE 7 specification (JSR 342 in section EE.6.2.2) defines how permissions can be granted to deployments by introducing META-INF/permissions.xml (only allowed in top level deployment). EAP goes one step further and allows granting permissions on subdeployment level by introducing META-INF/jboss-permissions.xml.

      Suggestion for improvement:
      Add a paragraph under the New Features chapter with sth like:

      Java EE Security Manager
      Granting permissions to deployments is based on JEE 7 specification (JSR 342 in section EE.6.2.2). More fine-grained control is possible by using custom deployment descriptor META-INF/jboss-permissions.xml which can be also defined for submodules of the deployment. You can find more details about permissions configuration in the book "How To Configure Server Security".

      Attachments

        Issue Links

          blocks

          Task - Represents a small unit of work that is not end-user facing. JBEAP-2858 EAP 7 GA Release Notes Tracker

          • Blocker - To be worked above all other priorities. This term is chosen when the severity of the issue is very high, has no workaround, or the effort for the change is comparatively low. Issues that may be very publicly visible and could generate significant media attention may also drive a higher priority.
          • Closed
          is related to

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-411 jboss-permissions.xml in EAR module allows to grant additional permissions

          • Critical - To be worked on immediately following BLOCKER issues.
          • Closed

          Activity

            People

              dmichael@redhat.com David Michael (Inactive)
              josef.cacek@gmail.com Josef Cacek (Inactive)
              Josef Cacek Josef Cacek (Inactive)
              Josef Cacek Josef Cacek (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: