Bulk Operation

  1. Choose Issues
  2. Choose Operation
  3. Operation Details
  4. Confirmation

Step 1 of 4: Choose Issues

Cancel

T Key Summary Assignee Reporter P Status Resolution Created Updated Due Components Development
Sub-task WFLY-2572

WFLY-490 OperationContext.readResourceFromRoot throws UnauthorizedException even when the user doesn't have 'address' perms

Brian Stansberry Brian Stansberry Major Closed Done   Management
Sub-task WFLY-2444

WFLY-490 Missing filtering response header from type=*:read-resource

Brian Stansberry Brian Stansberry Major Closed Done   Management
Sub-task WFLY-2412

WFLY-490 Security Realm and LDAP Connection incorrectly available as resourced under core-services=management in domain mode.

Darran Lofthouse Darran Lofthouse Major Closed Done   Management, Security
Sub-task WFLY-2394

WFLY-490 AccessControlContext and management users Subject leaking into thread pool of host controller executor.

Darran Lofthouse Darran Lofthouse Blocker Closed Done   Management, Security
Sub-task WFLY-2337

WFLY-490 Eliminate additional round trip exchange of Subject from host controller to app server or slave host controllers.

Darran Lofthouse Darran Lofthouse Major Closed Done   Management
Sub-task WFLY-2317

WFLY-490 Trying to remove a server group as a server-group-scoped role leaks information

Brian Stansberry Ladislav Thon Major Closed Done   Management
Sub-task WFLY-2307

WFLY-490 Allow access-control "write" metadata to say "true" for read-only attributes

Brian Stansberry Brian Stansberry Major Closed Done   Management
Sub-task WFLY-2299

WFLY-490 SGSR permission are wrong on server-config

Brian Stansberry Heiko Braun Major Closed Done   Management
Sub-task WFLY-2278

WFLY-490 Deployer can't modify data source when datasources set as application resources

Brian Stansberry Ladislav Thon Major Closed Done   Management
Sub-task WFLY-2274

WFLY-490 Expose the list of standard role names and of all role names

Brian Stansberry Brian Stansberry Major Closed Done   Management, Security
Sub-task WFLY-2271

WFLY-490 A problem setting include-all on a role mapping is failing getting rolled back.

Darran Lofthouse Darran Lofthouse Major Closed Done   Management
Sub-task WFLY-2270

WFLY-490 Lack of model integrity checking regarding role mappings, standard role names and scoped role names.

Darran Lofthouse Darran Lofthouse Major Closed Done    
Sub-task WFLY-2258

WFLY-490 Add sensitivities to the subsystem 'describe' operations

Brian Stansberry Kabir Khan Major Closed Done   Management
Sub-task WFLY-2220

WFLY-490 Unable to reload server after adding role and executing :reload

Darran Lofthouse Darran Lofthouse Critical Closed Done   Management
Sub-task WFLY-2216

WFLY-490 include-all role mappings don't work in domain

Darran Lofthouse Ladislav Thon Major Closed Done   Management, Security
Sub-task WFLY-2190

WFLY-490 Priviledge alignment for scoped resources

Brian Stansberry Heiko Braun Major Closed Done   Management
Sub-task WFLY-2189

WFLY-490 Enforce and correctly describe permissions on domain server lifecycle ops

Brian Stansberry Brian Stansberry Major Closed Done   Management
Sub-task WFLY-2179

WFLY-490 Enforce permissions on deployment upload ops

Brian Stansberry Brian Stansberry Major Closed Done   Management
Sub-task WFLY-2175

WFLY-490 Add transformers for RBAC resources

Brian Stansberry Brian Stansberry Major Closed Done   Management
Sub-task WFLY-2155

WFLY-490 Defining <outbound-connections> in <management> prevents the server to start

Darran Lofthouse Ladislav Thon Blocker Closed Done   Management
Sub-task WFLY-2143

WFLY-490 Security Realm - authorization validation

Darran Lofthouse Darran Lofthouse Major Closed Done   Management, Security
Sub-task WFLY-2142

WFLY-490 Improve SecurityRealm service removal.

Darran Lofthouse Darran Lofthouse Major Closed Done   Management, Security
Sub-task WFLY-2139

WFLY-490 ProxyStepHandler/Controller need to check access before attempting to read information

Kabir Khan Kabir Khan Major Closed Done   Management, Security
Sub-task WFLY-2131

WFLY-490 read-operation-names to return a filtered list of allowed operations

Kabir Khan Oleksiy Lubyanskyy Major Closed Done   Management
Sub-task WFLY-2119

WFLY-490 RBAC-based tab completion for the CLI commands

Oleksiy Lubyanskyy Oleksiy Lubyanskyy Major Closed Done   CLI
Sub-task WFLY-2112

WFLY-490 Test that validate-address and validate-operation do not leak non-addressable addresses

Ladislav Thon Kabir Khan Major Closed Done   Management
Sub-task WFLY-2098

WFLY-490 NPE when modifying an existing server-group scoped role

Brian Stansberry Harald Pehl Major Closed Done   Management
Sub-task WFLY-2091

WFLY-490 Remove host.xml host scoped role config

Kabir Khan Brian Stansberry Major Closed Done   Management
Sub-task WFLY-2089

WFLY-490 Error executing composite operation as server group role

Brian Stansberry Heiko Braun Major Closed Done   Management
Sub-task WFLY-2087

WFLY-490 Administrator should be prevented from modifying super user and auditor roles.

Darran Lofthouse Darran Lofthouse Critical Closed Done   Management, Security
Sub-task WFLY-2086

WFLY-490 Update platform-mbean resources to allow configuration of sensitivity constraints

Tomaž Cerar Brian Stansberry Major Closed Done   Management
Sub-task WFLY-2085

WFLY-490 Prevent server group scoped roles modifying the master HC if it has no servers

Brian Stansberry Brian Stansberry Major Closed Done   Management
Sub-task WFLY-2068

WFLY-490 Add support for an include-all option on individual role mappings.

Darran Lofthouse Darran Lofthouse Major Closed Done   Management, Security
Sub-task WFLY-2066

WFLY-490 Upgrade to Remoting JMX 2.0.0.CR2

Darran Lofthouse Darran Lofthouse Critical Closed Done   JMX, Remoting
Sub-task WFLY-2063

WFLY-490 Remove support for use-realm-roles in role mapping implementation,

Darran Lofthouse Darran Lofthouse Critical Closed Done   Management, Security
Sub-task WFLY-2050

WFLY-490 Ensure there is proper trace level logging for all RBAC decisions

Brian Stansberry Brian Stansberry Major Closed Done   Management
Sub-task WFLY-2044

WFLY-490 Rework Subject propagation to avoid marshaling.

Darran Lofthouse Darran Lofthouse Major Closed Done   Management, Security
Sub-task WFLY-2043

WFLY-490 RBAC config for slave HCs unable to access master HC

Brian Stansberry Brian Stansberry Major Closed Done   Management
Sub-task WFLY-2040

WFLY-490 RBAC + JMX: auditor can't read sensitive non-core MBeans

Kabir Khan Ladislav Thon Major Closed Done   JMX, Management
Sub-task WFLY-2037

WFLY-490 Login as user with no role assigned leads to 500 error page

Heiko Braun Jakub Cechacek Major Closed Done   Management
Sub-task WFLY-2029

WFLY-490 access-type attribute description and access-control section

Kabir Khan Oleksiy Lubyanskyy Major Closed Done   Management
Sub-task WFLY-2026

WFLY-490 Include hosts in allowed resources for server group scoped roles

Brian Stansberry Brian Stansberry Major Closed Done   Management
Sub-task WFLY-2025

WFLY-490 Remove configurability of VaultExpressionSensitivityConfig addressability

Kabir Khan Brian Stansberry Major Closed Done   Management
Sub-task WFLY-2024

WFLY-490 Scoped roles base on SuperUser should not be allowed

Unassigned Jakub Cechacek Major Closed Rejected   Management, Security
Sub-task WFLY-2010

WFLY-490 RBAC: read-resource-description is wrong about the ability to :add in the datasources subsystem

Brian Stansberry Ladislav Thon Major Closed Done   Management
Sub-task WFLY-2003

WFLY-490 Failed handling operation rollback -- null

Brian Stansberry Heiko Braun Major Closed Done   Management
Sub-task WFLY-2000

WFLY-490 No enum AccessAuthorizationResourceDefinition.Provider.UNDEFINED

Brian Stansberry Heiko Braun Major Closed Done   Management
Sub-task WFLY-1986

WFLY-490 Review exceptions thrown for authorization cases in JMX

Kabir Khan Jakub Cechacek Major Closed Done   Management, Security
Sub-task WFLY-1985

WFLY-490 read-attribute operation is leaking value when user is not authorized to read that attribute

Ladislav Thon Jakub Cechacek Critical Closed Done   Management, Security
Sub-task WFLY-1983

WFLY-490 MBeans for unaddressable resources available through JMX

Kabir Khan Jakub Cechacek Major Closed Done   Management, Security
Sub-task WFLY-1980

WFLY-490 Revisit priviledges for /core-service=management/access=authorization

Brian Stansberry Heiko Braun Major Closed Done   Management
Sub-task WFLY-1977

WFLY-490 Add configuration attribute for PERMISSIVE vs REJECTING role combinations

Brian Stansberry Brian Stansberry Major Closed Done   Management
Sub-task WFLY-1955

WFLY-490 Failed to read hosts

Emanuel Muckenhuber Heiko Braun Major Closed Out of Date   Management
Sub-task WFLY-1943

WFLY-490 Add Run-As Capability to ConfigurableRoleMapper

Darran Lofthouse Darran Lofthouse Major Closed Done   Management
Sub-task WFLY-1942

WFLY-490 Forward port core management xsd schema 1.5 from EAP

Brian Stansberry Brian Stansberry Major Closed Done   Management
Sub-task WFLY-1936

WFLY-490 Ensure RBAC metadata changes result in management API bump

Brian Stansberry Brian Stansberry Major Closed Done   Management
Sub-task WFLY-1923

WFLY-490 Access through unsecured management interface

Darran Lofthouse Jakub Cechacek Major Closed Done   Management, Security
Sub-task WFLY-1922

WFLY-490 Test rbac for jmx in the testsuite

Ladislav Thon Kabir Khan Major Closed Done   Management
Sub-task WFLY-1920

WFLY-490 Access control constraints for the audit logging resources

Kabir Khan Brian Stansberry Major Closed Done   Management
Sub-task WFLY-1915

WFLY-490 Propagation of access control configuration to slave host controllers

Brian Stansberry Heiko Braun Major Closed Done   Management
Sub-task WFLY-1866

WFLY-490 More useful access control failure messages

Brian Stansberry Brian Stansberry Major Closed Won't Fix   Management
Sub-task WFLY-1858

WFLY-490 Add RBAC sensitivity classification constraints to undertow subsystem

Tomaž Cerar Brian Stansberry Blocker Closed Done   Management, Web (Undertow)
Sub-task WFLY-1852

WFLY-490 Populate the Subject with the required prinicpals for rbac/audit logging earlier

Darran Lofthouse Kabir Khan Major Closed Done   Security
Sub-task WFLY-1844

WFLY-490 deep-copy-subject-mode attribute on Security Subsystem is Readable to all roles

Kabir Khan Jakub Cechacek Major Closed Done   Management, Security
Sub-task WFLY-1843

WFLY-490 Invoking :read-resource operation on Security subsystem as a role with restricted privileges causes NPE

Brian Stansberry Jakub Cechacek Major Closed Done   Management, Security
Sub-task WFLY-1838

WFLY-490 Authorisation descision filtered vs. read-only

Kabir Khan Heiko Braun Major Closed Done   Management
Sub-task WFLY-1821

WFLY-490 Update to web console 2.0.0.Final

Heiko Braun Heiko Braun Blocker Closed Done   Web Console
Sub-task WFLY-1820

WFLY-490 Report data about what resources/attributes/ops a SensitivityClassification or ApplicationTypeConfig are applied to

Brian Stansberry Brian Stansberry Minor Closed Done   Management
Sub-task WFLY-1819

WFLY-490 Prevent non-core use of ApplicationTypeConfig.DEPLOYMENT

Brian Stansberry Brian Stansberry Minor Closed Done   Management
Sub-task WFLY-1818

WFLY-490 Allow ModelControllerClient configurations to disable the JBOSS_LOCAL_USER SASL mechanism

Brian Stansberry Brian Stansberry Major Closed Done   Management
Sub-task WFLY-1817

WFLY-490 Ensure platform-mbean misc write ops require write perms

Tomaž Cerar Brian Stansberry Major Closed Done   Management
Sub-task WFLY-1790

WFLY-490 RBAC: HostScopedRole* operations are wrong (copy&paste from ServerGroupScopedRole*)

Ladislav Thon Ladislav Thon Major Closed Done   Management
Sub-task WFLY-1789

WFLY-490 RBAC: OperationContextImpl.readResourceForUpdate is missing an authorize call

Brian Stansberry Ladislav Thon Major Closed Done   Management
Sub-task WFLY-1788

WFLY-490 RBAC: role combination doesn't work

Ladislav Thon Ladislav Thon Major Closed Done   Management
Sub-task WFLY-1756

WFLY-490 Add access-control parameter to read-operation-description operation

Kabir Khan Kabir Khan Major Closed Done   Management

Cancel