[jira] [Commented] (ISIS-1297) Integrate with Keycloak
[ https://issues.apache.org/jira/browse/ISIS-1297?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16976008#comment-16976008 ] ASF subversion and git services commented on ISIS-1297: --- Commit 876e1e036cdf9d01142b679d33c1356ea621df5a in isis's branch refs/heads/master from danhaywood [ https://gitbox.apache.org/repos/asf?p=isis.git;h=876e1e0 ] ISIS-1297: reverts hello world app to use shiro > Integrate with Keycloak > --- > > Key: ISIS-1297 > URL: https://issues.apache.org/jira/browse/ISIS-1297 > Project: Isis > Issue Type: New Feature >Reporter: Daniel Keir Haywood >Assignee: Daniel Keir Haywood >Priority: Major > Fix For: 2.0.0 > > > As suggested on the Apache Isis mailing list. > http://markmail.org/message/6jwghlmyravuxfbx > There are several approaches ... > As described in our security guide [1] Apache Isis has a pluggable API for > both authentication and authorization, so at the lowest level one could > take implement either/both of these plugin points. > Apache Isis has two integrations, one for Shiro and one called "bypass" > (which basically disables security). So one could ignore Apache Isis' > Shiro integration and implement everything yourself. > However, it would probably make more sense to build > upon the Isis Add-ons security module [2], which builds upon the Shiro > integration by providing an implementation of a Shiro Realm. This is > described in [3]. In fact, I would suggest that keycloak would be used as > a delegate realm within the Isis addons' security module. > In other words, the design that we could use is: > Apache Isis -> Shiro -> Isis addons security realm -> Isis addons > delegate realm > This last realm would be implemented using Keycloak. > The documentation in the security module [4] and [5] might also help to > explain this. > Note that this design would use Keycloak for authentication (validate > credentials and lookup roles), with the security module taking > responsibility for authorization. > [1] http://isis.apache.org/guides/ugsec.html > [2] https://github.com/isisaddons/isis-module-security > [3] > http://isis.apache.org/guides/ugsec.html#_ugsec_shiro-isisaddons-security-module-realm > [4] https://github.com/isisaddons/isis-module-security#application-users > [5] > https://github.com/isisaddons/isis-module-security#shiro-configuration-shiroini -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (ISIS-2179) Fallback to home page (in event of action returning null) throws an IllegalArg
[ https://issues.apache.org/jira/browse/ISIS-2179?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16976006#comment-16976006 ] ASF subversion and git services commented on ISIS-2179: --- Commit 220143e6730985cd5dbbd41bb2a65ad13ff3bf60 in isis's branch refs/heads/master from danhaywood [ https://gitbox.apache.org/repos/asf?p=isis.git;h=220143e ] ISIS-2179: unwraps the Optional also adds fail-fast for anywhere else that the wrong argument is provided to a ManagedObject > Fallback to home page (in event of action returning null) throws an IllegalArg > -- > > Key: ISIS-2179 > URL: https://issues.apache.org/jira/browse/ISIS-2179 > Project: Isis > Issue Type: Bug >Affects Versions: 2.0.0-M2 >Reporter: Daniel Keir Haywood >Assignee: Daniel Keir Haywood >Priority: Major > Fix For: 2.0.0 > > > ... as a result of the target pojo for the domain service being an Optional > wrapped around the domain service rather than the pojo itself -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (ISIS-2094) Release tasks for 2.0.0
[ https://issues.apache.org/jira/browse/ISIS-2094?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16976007#comment-16976007 ] ASF subversion and git services commented on ISIS-2094: --- Commit db869433c178a20858258e70a0d5f4b985819df7 in isis's branch refs/heads/master from danhaywood [ https://gitbox.apache.org/repos/asf?p=isis.git;h=db86943 ] ISIS-2094: wicket impl incorrect depends on jmock with compile scope > Release tasks for 2.0.0 > --- > > Key: ISIS-2094 > URL: https://issues.apache.org/jira/browse/ISIS-2094 > Project: Isis > Issue Type: Task >Affects Versions: 2.0.0-M2 >Reporter: Daniel Keir Haywood >Assignee: Daniel Keir Haywood >Priority: Major > Fix For: 2.0.0 > > > Consider adding credits to the web-site including ... > - Icons made by [Freepik|http://www.freepik.com/] and > [Smashicons|https://www.flaticon.com/authors/smashicons] from > [www.flaticon.com|https://www.flaticon.com/] which are licensed by [CC 3.0 > BY|http://creativecommons.org/licenses/by/3.0/]. > - We use [flexmark|https://github.com/vsch/flexmark-java] for markdown > rendering. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Created] (ISIS-2179) Fallback to home page (in event of action returning null) throws an IllegalArg
Daniel Keir Haywood created ISIS-2179: - Summary: Fallback to home page (in event of action returning null) throws an IllegalArg Key: ISIS-2179 URL: https://issues.apache.org/jira/browse/ISIS-2179 Project: Isis Issue Type: Bug Affects Versions: 2.0.0-M2 Reporter: Daniel Keir Haywood Assignee: Daniel Keir Haywood Fix For: 2.0.0 ... as a result of the target pojo for the domain service being an Optional wrapped around the domain service rather than the pojo itself -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (ISIS-2062) Convert website to use Antora
[ https://issues.apache.org/jira/browse/ISIS-2062?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16975960#comment-16975960 ] ASF subversion and git services commented on ISIS-2062: --- Commit 9edab430f10fe6fd0db48534769c75088e8a76f5 in isis's branch refs/heads/master from danhaywood [ https://gitbox.apache.org/repos/asf?p=isis.git;h=9edab43 ] ISIS-2062: minor edits > Convert website to use Antora > - > > Key: ISIS-2062 > URL: https://issues.apache.org/jira/browse/ISIS-2062 > Project: Isis > Issue Type: Improvement >Reporter: Daniel Keir Haywood >Assignee: Daniel Keir Haywood >Priority: Major > Fix For: 2.0.0 > > -- This message was sent by Atlassian Jira (v8.3.4#803005)
