Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-3906

Add information about jboss-permissions.xml to New features section in the Release notes

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Critical Critical
    • 7.0.0.ER7
    • 7.0.0.ER7
    • Documentation
    • None

      Book: Release notes
      Revision: n_2202663_700-release-notes_version_7.0_edition_1.0_release_0-revision_7877113

      Issue description:
      There is missing information about new Security Manager features.

      JEE 7 specification (JSR 342 in section EE.6.2.2) defines how permissions can be granted to deployments by introducing META-INF/permissions.xml (only allowed in top level deployment). EAP goes one step further and allows granting permissions on subdeployment level by introducing META-INF/jboss-permissions.xml.

      Suggestion for improvement:
      Add a paragraph under the New Features chapter with sth like:

      Java EE Security Manager
      Granting permissions to deployments is based on JEE 7 specification (JSR 342 in section EE.6.2.2). More fine-grained control is possible by using custom deployment descriptor META-INF/jboss-permissions.xml which can be also defined for submodules of the deployment. You can find more details about permissions configuration in the book "How To Configure Server Security".

              dmichael@redhat.com David Michael (Inactive)
              josef.cacek@gmail.com Josef Cacek (Inactive)
              Josef Cacek Josef Cacek (Inactive)
              Josef Cacek Josef Cacek (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: