Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-17977

Update EE Security to support virtual security domains

    XMLWordPrintable

Details

    • Feature Request
    • Resolution: Unresolved
    • Major
    • None
    • None
    • Security
    • None
    • ---
    • ---

    Description

      The EE security subsystem was integrated before we had the notion of virtual security domains with MP JWT and now OpenID Connect, this means we need to match against an application security domain mapping with Jakarta Authentication correctly configured.

      As EE Security deployments are largely self contained for their security we should just use the virtual security domain approach.

      We will likely need an attribute on the subsystem which defaults to false to turn on the virtual security domain support then set it to true in the default configuration, this will then mean we cam handle old configurations without backwards compatibility issues.

      Attachments

        Issue Links

          is related to

          Feature Request - Feature requests from customers and/or users WFLY-18114 Split support for Jakarta Authentication into it's own subsystem and layer

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Open
          relates to

          Enhancement - An enhancement to or refactoring of existing functionality that is not configurable by an end user (typically a change made by an internal team that affects users) WFLY-17976 Ensure the JACC Policy is enabled in the default EE feature pack configuration.

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              darran.lofthouse@redhat.com Darran Lofthouse
              darran.lofthouse@redhat.com Darran Lofthouse
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated: