Re: Deploying multiple tenants from one xml config

> On Mar 13, 2024, at 7:09 AM, Shawn McKinney wrote: > > The problem, the xml data corresponding which each additional tenant would > have to separate, because that is how the APIs work currently. > > e.g. > > ``` > mvn install -Dload.file=acme.xml -Dtenant=acm

Re: Deploying multiple tenants from one xml config

> On Mar 13, 2024, at 5:39 AM, Veniamin Gvozdikov > wrote: > > Hello, > > Is it possible to deploy multiple tenants over one huge xml file? I only > found this section with changing context >

Re: Groups example doesn't work

> On Nov 28, 2023, at 12:08 PM, Veniamin Gvozdikov > wrote: > > Zero difference as I see by AWS IAM and fortress roles with permissions. > But groups are a bit unclear within ldap and fortress. Your confusion is understandable. Like many volunteer projects, documentation sometimes doesn’t

Re: Groups example doesn't work

> On Nov 28, 2023, at 11:01 AM, Veniamin Gvozdikov > wrote: > > I actually expected like AWS IAM has: > > From AWS documentation: An IAM group is an identity that specifies a > collection of IAM users. You can't use a group to sign-in. You can use groups > to specify permissions for

Re: Groups example doesn't work

> On Nov 27, 2023, at 5:02 PM, Veniamin Gvozdikov > wrote: > > Hello, > > I tried to use groups from file > src/main/java/org/apache/directory/fortress/core/ant/Addgroup.java > > * > * * properties="key1=value1, key2=val 2, key3='VAL 3'" /> > * > > But

Re: Service accounts with RBAC

> On Nov 13, 2023, at 11:54 AM, Veniamin Gvozdikov > wrote: > > Hello, thanks for the explanation. > > On Sun, Nov 12, 2023 at 6:55 PM Shawn McKinney wrote: >>> On Nov 10, 2023, at 10:28 AM, Veniamin Gvozdikov < >> g.venia...@googlemail.com.INVALID>

Re: Hashing passwords

> On Nov 10, 2023, at 10:24 AM, Veniamin Gvozdikov > wrote: > > Hello. > > I would like to use hashed user passwords but I didn't get the property > with encryption of passwords for userPassword. If you open DIT with Apache > Directory Studio any user from ou=People account's property with

Re: Service accounts with RBAC

> On Nov 10, 2023, at 10:28 AM, Veniamin Gvozdikov > wrote: > > Hello. > > I have some services which use ldap to login over ldap like scripts or > daemons. What is the best way to define service accounts with Fortress RBAC > schema? The ou=People looks not relevant for that task and no one

Re: Run schema installation without maven

> On Nov 10, 2023, at 10:31 AM, Veniamin Gvozdikov > wrote: > > Hello. > > Currently I use maven command to deploy schema (from docs on github): > > mvn install -Dload.file=./ldap/setup/refreshLDAPData.xml > > Is it possible to use it with java -jar file.jar or another approach > without

Re: Fortress REST with Swagger support

> On Nov 4, 2023, at 1:11 AM, Yudhi Karunia Surtan > wrote: > > I tried the above configuration and found that Swagger2Feature is not > applicable for fortress 3.0.0 since version 3.0.0 has been moved using > jakarta dependency. > Good catch Yudhi. > found log with the following : > >

Re: Fortress REST with Swagger support

> On Nov 2, 2023, at 11:42 AM, Veniamin Gvozdikov > wrote: > > I'm trying to use the CXF feature > https://cxf.apache.org/docs/swagger2feature.html on fortress 3.0.0 to get > API access over swagger interface. I've already added these lines but I > don't understand where I need to turn the

Re: Fortress REST with Swagger support

> On Nov 2, 2023, at 11:42 AM, Veniamin Gvozdikov > wrote: > > I'm trying to use the CXF feature > https://cxf.apache.org/docs/swagger2feature.html on fortress 3.0.0 to get > API access over swagger interface. I've already added these lines but I > don't understand where I need to turn the

[ANNOUNCE] Apache Fortress 3.0.0 Released

The Apache Directory Project announces the latest release of Fortress. ANSI INCITS 359 compliant Role-Based Access Control system. APIs, services and web pages for security policy administration, review and enforcement. This brings Jakarta compatibility to the suite. Upgraded to run on Apache

Result, was: [VOTE] Apache Fortress 3.0.0 release

Closing with 3 +1 binding votes. Emmanuel, Colm and I. Thanks! — Shawn - To unsubscribe, e-mail: fortress-unsubscr...@directory.apache.org For additional commands, e-mail: fortress-h...@directory.apache.org

Re: [VOTE] Apache Fortress 3.0.0 release

> On Sep 6, 2023, at 1:09 AM, Colm O hEigeartaigh wrote: > > +1. > > Just one thing I noticed Shawn, is that /lib/ehcache-2.10.9.2.jar > contains a large amount of embedded CVEs (Jackson, Jetty), is it > planned to update to ehcache 3.x? Interesting that I missed this. I’ll have another

Re: [VOTE] Apache Fortress 3.0.0 release

> On Sep 3, 2023, at 8:32 PM, Emmanuel Lécharny wrote: > > Hi Shawn, > > just checked out the tag (3.0.0) and tried it, got an error in SECTION 4, > step 2: > Hey Emmanuel, Based on the error (extracted from output below): ``` 2023-09-04 03:30:009 INFO LdapConnectionProvider:425 - Use

[VOTE] Apache Fortress 3.0.0 release

Hello, This is an announcement to vote for the next release of Apache Directory Fortress, 3.0.0. Here are the list of bugs and enhancements: - [fortress jira issues 3.0](https://issues.apache.org/jira/projects/FC/versions/12346614) A tag created for git: ‘3.0.0', and the sources may be

Starting Fortress 3.0 release

Hello Going to follow-up on the API release with Fortress. Is migrated to Jakarta, require java 11 (core realm, rest) and java 17 (web) With a little luck, a vote next week. — Shawn - To unsubscribe, e-mail:

Re: Get ready for a 3.0 Release

> On Jun 17, 2023, at 9:55 AM, Shawn McKinney wrote: > > Update: > > I did not point out earlier that Fortress Rest (enmasse) and web (commander) > components will require >= Java 17, due to their reliance on Spring v6. > Correction: Only the Rest compone

Re: Get ready for a 3.0 Release

JDK. The others (core, realm) will require >= Java 11. I’m hoping to get these changes merged soon. Have a bit more testing to do. If all goes well, will release in a week or so. — Shawn > On May 27, 2023, at 7:44 AM, Shawn McKinney wrote: > > Beginning in a few weeks, I’ll be merg

Get ready for a 3.0 Release

Beginning in a few weeks, I’ll be merging the changes for Jakarta compatibility. The first release will bring partial Jakarta compatibility. Fortress Rest will support it and will require Tomcat 10 and beyond. The Web component will not. Why? Not all of its dependencies yet have support. It

Notice: Apache Fortress 3.0 -> requires Java 11

Hello, Due to the Javax to Jakarta migration, the next release of Apache Fortress will require >= Java 11. Similarly, the next release of Apache Fortress Rest (enmasse) requires >= Apache Tomcat 10. The Apache Fortress Web (commander) relies on Apache Wicket which has not released Jakarta

Javax to Jakarta Migration

Hello, Yesterday, I was able to successfully run Apache Fortress Rest test cases inside of a runtime that uses Jakarta packages. This means that we can finally migrate to the Jakarta namespace. You can have a look at the initial changes here, although its likely this code will change: -

Re: Issue in fortress web site

> On Aug 2, 2022, at 11:08 AM, Emmanuel Lécharny wrote: > > Hi Shawn, some question regarding page 4.2 - Check access: > > wondering if it wouldn't be easier to extend the AccessMgr.checkAccess method > to take more parameters, like : > >boolean result = accessMgr.checkAccess(

[ANNOUNCE] Apache Fortress 2.0.8 Released

The Apache Directory Project announces the latest release of Fortress. This release the Apache Fortress Web component upgrades to Apache Wicket version 9. Apache Fortress Core performance improvements. It also includes dependency upgrades to be up-to-date per the latest OWASP vulnerability

Re: [RESULT][VOTE] Apache Fortress 2.0.8 release

up to you, if you're happy with it as it stands I > am +1 on the release. > > Colm. > > On Wed, Jul 20, 2022 at 5:18 PM Shawn McKinney wrote: >> >> >>> On Jul 20, 2022, at 8:43 AM, Shawn McKinney wrote: >>> >>> I’d need to be convinced th

Re: [VOTE] Apache Fortress 2.0.8 release

> On Jul 21, 2022, at 5:06 AM, Colm O hEigeartaigh wrote: > > I guess you could override the versions of the following jars to 5.3.22: > > [INFO] | +- org.springframework:spring-aop:jar:5.3.21:compile >> [INFO] | +- org.springframework:spring-beans:jar:5.3.21:compile >> [INFO] | +-

Re: [VOTE] Apache Fortress 2.0.8 release

> On Jul 20, 2022, at 8:43 AM, Shawn McKinney wrote: > > I’d need to be convinced that going with a previous version of spring > security to match the core is advisable due to all of the CVE’s. In any > case, there isn’t a a 5.3.22 spring core version. Err, the o

Re: [VOTE] Apache Fortress 2.0.8 release

> On Jul 19, 2022, at 8:30 AM, Emmanuel Lécharny wrote: > > BTW, just noticed that fortress-commanderrequires Java 11, while the other > components only require java 8. Is this intended? Emmanuel, Yes. The upgrade to latest Wicket v9 requires the jump to java 11. The others still happily

[VOTE] Apache Fortress 2.0.8 release

Hello, This is an announcement to vote for the next release of Apache Directory Fortress, 2.0.8. Here are the list of bugs and enhancements: https://issues.apache.org/jira/projects/FC/versions/12351048 A tag created for git: ‘2.0.8', and the sources may be pulled using git commands: git

New fortress Release 2.0.8

Hello, Our last release was in December. It was an emergency release to patch log4j. There have been 3 or 4 log4j releases since then. A couple of which are still flagged as vulnerable. This release will get us to the latest log4j + latest wicket, spring releases for web and rest components.

Re: Last call for Java 8 support

> On Apr 10, 2022, at 6:02 PM, Emmanuel Lécharny wrote: > > Only if you pay. And we are talking about big $. > > We have absolutely no way to get those corrected Java versions which may have > an impact on our code base. > > That's why I think we should move forward. Are you referring to

Apache Fortress is not affected by Spring4Shell (CVE-2022-22965)

TL;DR Apache Fortress is not affected by the Spring Framework RCE via Data Binding on JDK 9+, a.k.a. Spring4Shell. Longer version We don't use Spring anywhere in the Core or Realm. Spring is used in Web and Rest, but only the spring-webmvc and spring-webflux[1] artifacts are affected and

Re: Last call for Java 8 support

> On Apr 8, 2022, at 4:25 PM, Emmanuel Lécharny wrote: > > Java 8 active support has been EOLed 1 week ago. There is no way we will go > for a pay support, so IMO, the switch to Java 11 or 17 is the way to go. Hello Emmanuel, Yes, but 8 will continue to have security patches for some time

Last call for Java 8 support

Hello, It’s becoming increasingly difficult to justify supporting Java 8 in the fortress codeline. Dependencies like Wicket and JGraphT require 9 and 11, respectively. Both very important libraries to us. But, if you still need Java 8 support, we can discuss it here. I’m not opposed to

Re: Proposal for Updated Docker Image for ApacheDS FC-306

> On Jan 2, 2022, at 9:21 AM, Shawn McKinney wrote: > > The changes include: > > Use: > a) FROM openjdk:11-jre-slim-buster > b) ENV APACHEDS_VERSION=2.0.0.AM25 > > Slim image: > before: 554MB > after: 251MB Correction, now using 2.0.0.AM26 — the latest

Proposal for Updated Docker Image for ApacheDS FC-306

Similar, to yesterday’s post about updating the project’s OpenLDAP image, also making changes to the ApacheDS: https://issues.apache.org/jira/browse/FC-306 The changes include: Use: a) FROM openjdk:11-jre-slim-buster b) ENV APACHEDS_VERSION=2.0.0.AM25 Slim image: before: 554MB after: 251MB

Proposal for Updated Docker Image for OpenLDAP FC-305

Hello, Would like to communicate a proposed change: https://issues.apache.org/jira/browse/FC-305 Please read and review the latest comment on this ticket which contains pros/cons for updating the image used by this project. Pay special attention to disclaimer, that I’m an employee of Symas

Re: CVE-2021-44228 mitigation procedures

> On Dec 12, 2021, at 3:16 PM, Shawn McKinney wrote: > > 1. Use latest release 2.0.7. Released today, it includes the patched log4j2 > v2.15.0 > > If you can’t go to latest… Clarification: This vulnerability only applies to deployments that use Apache Fortress 2.0.6.

CVE-2021-44228 mitigation procedures

Hello, This contains mitigation procedures for a recent critical vulnerability discovered in Apache Log4j core. If you are using Apache Fortress here are things you can do to prevent the exploit from occurring. 1. Use latest release 2.0.7. Released today, it includes the patched log4j2

[ANNOUNCE] Apache Fortress 2.0.7 Released

The Apache Directory Project announces a new release of Fortress. This emergency release includes an upgrade to the latest Log4j library, v2.15.0. This is our response to CVE-2021-44228. It also includes dependency upgrades for Web and Rest deployments to be up-to-date per the latest OWASP

[ANNOUNCE] Apache Fortress 2.0.6 Released

The Apache Directory Project announces the latest release of Fortress! Apache Fortress provides a fine-grained authorization security system using Role-Based and Attribute-Based Access Control semantics. It’s built to scale to many thousands of requests per second using a fault-tolerant LDAP

Re: [RESULT] [VOTE] Apache Fortress 2.0.6 release (take 2)

> On Jul 11, 2021, at 11:16 AM, Stefan Seelmann wrote: > > On 7/11/21 5:53 PM, Shawn McKinney wrote: >> >>> On Jul 11, 2021, at 9:42 AM, Emmanuel Lécharny wrote: >>> >>> I do think that we need some faster way to validate the packages. It took

Re: [RESULT] [VOTE] Apache Fortress 2.0.6 release (take 2)

> On Jul 11, 2021, at 9:42 AM, Emmanuel Lécharny wrote: > > I do think that we need some faster way to validate the packages. It took me > around 1h30 to do that last night, most of it being waiting for the tests to > be ran. By tests you mean integration tests, i.e. junit? If yes, that’s

[RESULT] [VOTE] Apache Fortress 2.0.6 release (take 2)

YI, I won't have time before Sunday to check the release. >>> >>> On 7/6/21 8:57 PM, Shawn McKinney wrote: >>>> I have removed (and verified) the jboss jar dependency from fortress >>>> rest. The repos are retagged. Artifacts rebuilt and staged on

[VOTE] Apache Fortress 2.0.6 release (take 2)

I have removed (and verified) the jboss jar dependency from fortress rest. The repos are retagged. Artifacts rebuilt and staged once again. Let’s try this again... Hello, This is an announcement to vote for the next release of Apache Directory Fortress, 2.0.6. Here are the list of bugs and

Re: [VOTE] Apache Fortress 2.0.6 release

> On Jul 5, 2021, at 1:18 PM, Stefan Seelmann wrote: > > I found one weird thing: the fortress-rest-2.0.6.war contains in > WEB-INF/lib the jboss-rmi-api_1.0_spec-1.0.6.Final.jar. That jar does not appear on a test machine using JDK 8. Reading the ticket, it’s JDK 11 specific, which is what

[VOTE] Apache Fortress 2.0.6 release

Hello, This is an announcement to vote for the next release of Apache Directory Fortress, 2.0.6. Here are the list of bugs and enhancements: https://issues.apache.org/jira/projects/FC/versions/12349361 A tag created for git: ‘2.0.6', and the sources may be pulled using git commands: git

Re: Spring Boot sample app available

Hello Admir, Welcome! I've performed a cursory look at this project and it looks very interesting. I agree, the configurator is simple, which is always a good thing. I noticed the important security functions are mapped, where authN, authZ and session management are supported within a Spring

Talking about Ansible Apache Fortress

Hello, wanted to tell you about a project to automatically install an Apache Fortress test environment with OpenLDAP for Linux as the backend repository on a Redhat7/Centos7 machine. It uses Ansible to do the automatic setup which simplifies this quite a bit, if you just want to get up an env

Re: Does Apache Fortress Work With Active Directory?

> On Aug 18, 2020, at 6:34 PM, John Tumminaro wrote: > > Yudhi, nice to meet you and thanks for the reply. > > The current thinking for my Client is to use Apache Fortress with AWS > Directory Service as the underlying LDAP server. > Below is the reasoning for this...please feel free to

Re: Does Apache Fortress Work With Active Directory?

> On Aug 18, 2020, at 7:31 AM, Yudhi Karunia Surtan > wrote: > > Hi John, > > I'm not sure why you would like to use AD rather than openldap. > If the reason is about the existing credentials only i used SASL from > openldap to delegate the authentication to AD. Agree with Yudhi that most

Re: Does Apache Fortress Work With AWS Directory Service?

> On Aug 14, 2020, at 6:12 PM, John Tumminaro wrote: > > Hello All, > > I think I understand that Apache Fortress works with any underlying LDAP V3 > server. > I believe that AWS Directory Service LDAP, see here: > https://docs.aws.amazon.com/directoryservice/latest/admin-guide/what_is.html

Re: Does Apache Fortress Work With Active Directory?

> On Aug 14, 2020, at 2:06 PM, John Tumminaro wrote: > > Hello All, I'm new to the mailing list. > Hello John, welcome! > I think I understand that Apache Fortress works with any underlying LDAP V3 > server. > I believe the Microsoft Active Directory Server supports LDAP V3. > > I think I

Embrasure and John Eipe

Some time ago Kiran built a new user interface called Embrasure. It uses ViewJS and fortress rest services to provide admin of security policies for users, roles, perms, etc. For reasons that are common on open source projects, that work stalled and has been moved to a backburner. John Eipe

#Fortress channel on ASF Slack

FYI, join me on new #fortress slack channel on ASF: https://join.slack.com/share/zt-fp26fpqp-nwIlIA8K4mKlc85K3~Qtbg To say ask questions or just say hello. — Shawn - To unsubscribe, e-mail:

[ANNOUNCE] Apache Fortress 2.0.5 Released

The Apache Directory Project announces the latest release of Fortress! Apache Fortress is a fine-grained authorization security system using Role-Based and Attribute-Based Access Control semantics. It’s built to scale to many thousands of requests per second using a fault-tolerant LDAP backend

[Result][VOTE] Apache Fortress 2.0.5 release

t; * Checked legal files > * Built with Java 8, 11 (and 14) > > Kind Regards, > Stefan > > PS: fortress-core fails to compile with Java 14 because java.xml.bind is > no longer part of the JDK and needs to be added as dependency. > > > On

[VOTE] Apache Fortress 2.0.5 release

Hello, This is an announcement to vote for the next release of Apache Directory Fortress, 2.0.5. Here are the list of bugs and enhancements: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12315921=12348279 A tag created for git: ‘2.0.5', and the sources may be pulled using

Notification 2.0.5 release

Notifying intent. Here’s the list: [2.0.5 Jira issues](https://issues.apache.org/jira/projects/FC/versions/12348279) This a maintenance release. Improvements to fortress web (previously pointed out) and bug fixes to the core and rest components. Please let me know if there are questions or

Fortress Web Improvements

Hello, Notifying the project of some recent changes with Apache Fortress Web. Two enhancements: * [FC-281 Upgrade to Wicket version 8](https://issues.apache.org/jira/browse/FC-281) Long overdue upgrade was causing a backlog of other dependencies getting behind. Now on version 8.x of Wicket,

Re: Suggestion: split Fortress core into more focused components

> On May 6, 2020, at 8:04 AM, Shawn McKinney wrote: > > An interesting idea. Agreed that the Core is bloated with a collection of > related items not necessarily good for any one instance, possibly pulling in > unnecessary and (worse) conflicting dependencies. > >

Re: Suggestion: split Fortress core into more focused components

> On May 5, 2020, at 2:16 PM, Rusi Popov wrote: > > Dear colleagues, > Hello Rusi, welcome. > The Fortress Core component contains many features that are not co-related - > yes, they have something in common, but from the perspective of integrating a > Fortress client, having ANT and

Subject: [ANNOUNCE] Apache Fortress 2.0.4 Released

The Apache Directory Project announces its eleventh release of Fortress! Apache Fortress is a computer security access management facility written in Java. Other platforms use the Apache Fortress Rest component. Fortress provides a fine-grained authorization security model using role-based

Re: [VOTE][result] Apache Fortress 2.0.4 release

Hello, I am calling this vote passed. +3 for, myself, Emmanuel and Chris. Thanks for the help guys. — Shawn > On Dec 13, 2019, at 7:13 AM, Pike, Christopher wrote: > > +1 > ____ > From: Shawn McKinney > Sent: Wednesday, December 11, 2019 9:

Re: Fortress best pratices?

Hi, Just to add a bit to what Yudhi said… >> 1. We are wondering if Fortress provides any REST api to add new tenants. >> Or should we implement one? No REST API currently. The data structure of a tenant is just an LDAP entry of type organizationalUnit, Fortress refers to these

Re: Using REST to query more than 1000 entries

> On Jul 29, 2019, at 10:54 AM, Nuno Miquelina wrote: > > 1000 is a considerable number, but for large implementations it's always a > limit. > And can fool the user about the number of entries that they have on the > database (LDAP). Is not critical but is important to browse all the

Re: Using REST to query more than 1000 entries

> On Jul 29, 2019, at 10:21 AM, Nuno Miquelina wrote: > > Also, at site level (fortress web), the limit is reached and a message is > displayed saying that is showing the first 1000 items. There is no way (that > we have seen) to get the remaining results. Are you able to work around this

Re: Using REST to query more than 1000 entries

> On Jul 29, 2019, at 10:18 AM, Nuno Miquelina wrote: > > In our case, we detected the limit when getting permission objects. That would have been my second guess. This work could be prioritized, starting with users and permissions, moving on to others as needed. —Shawn

Re: Update procedure from 2.0.0 to 2.0.3

> On Jul 29, 2019, at 8:54 AM, Nuno Miquelina wrote: > > But we should update the core and web library/applications also, correct? > I will give feedback after the upgrade. Yes, the Web should be drop-in replacement as well. The Core depends. Is it a maven app — upgrade version and rebuild.

Re: Using REST to query more than 1000 entries

> On Jul 29, 2019, at 7:12 AM, Nuno Miquelina wrote: > > We have a fortress installation (version 2.0.0) and we use REST interface. > The number of saved entries in OpenLDAP is bigger than 1000 and the REST > interface only returns 1000 (batch size). How can we ask for the remaining >

Re: Update procedure from 2.0.0 to 2.0.3

> On Jul 29, 2019, at 7:08 AM, Nuno Miquelina wrote: > > What is the correct procedure to update a working installation from version > 2.0.0 to 2.0.3. > Is necessary to guarantee that no OpenLDAP data is erased or the schema stays > updated. Hello Nuno, welcome! By your other message I’m

Announcing LDAPCon 2019!

> From https://ldapcon.org/2019/ It's high time we shared the news: the 7th Conference on LDAP, Directory Services and Identity Management will take place November 4-6th at the Holiday Inn in Sofia, Bulgaria. November 4th is set aside for workshops, November 5th and 6th will be the regular

Re: apacheds won't start after installing Fortress

Hello Luis, welcome to our little project. :-) > On Apr 22, 2019, at 12:08 PM, Luis Carmona > wrote: > > thanks for your responses. I've tryed every combination I could, and the only > one that compiled perfectly and is working is the Docker Image of Fortress > and LDAP, now I will start to

Replacing Caching with LDAP Persistent Searches

This idea has been kicked around before, we discussed on the dev list a several months ago: http://mail-archives.apache.org/mod_mbox/directory-dev/201811.mbox/%3cb5afaf88-f17c-4d41-9992-e3c53c9fd...@apache.org%3e The biggest problem with caching is creates consistency problems between

Change service mappings to ReviewMgr authorizedUsers and authorizedRoles APIs

Hello, Discovered inconsistent naming being applied to these services: roleAuthzed -> org.apache.directory.fortress.core.impl.ReviewMgrImpl.authorizedUsers userAuthzedn -> org.apache.directory.fortress.core.impl.ReviewMgrImpl.authorizedRoles As you can see, they are backwards. roleAuthzed

Enhanced ARBAC02 checking in Apache Fortress REST

This topic was brought up recently here. There’s a ticket to track its progress: https://issues.apache.org/jira/browse/FC-265 And a new readme created to explain usage: https://github.com/apache/directory-fortress-enmasse/blob/master/README-SECURITY-MODEL.md The document is not the best, but

Delegated Administration Enhancements to Apache Fortress REST

Support for delegated administration has been part of the Core API since the beginning. How it works, a session is created on behalf of an administrator, that session is pushed into the runtime context, and subsequent API calls are made on behalf of that administrator. The kinds of checks are

Re: FC-250

> On Mar 5, 2019, at 1:08 AM, Kiran Ayyagari wrote: > > I missed to commit the changes made to pom.xml in realm, the build should > pass now. > Thanks Shawn. Ah silly me, I could have bumped the version of core the realm was using myself. In any case, the tests all pass now so I’d say we’re

Fwd: [NOTICE] Mandatory migration of git repositories to gitbox.apache.org

Hello, As directed in the message below, we must migrate out four git repos from the existing git-wip-us.apache.org to gitbox.apache.org . Specifically the repos include: directory-fortress-core directory-fortress-realm

Re: FC-250

link >>> >>> >>> >>> >> https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithubcom%2Fpike1212%2Ffortress-rest-service%2Fblob%2Fmaster%2Ffortressrestapi.pngdata=02%7C01%7Cclp207%40psu.edu%7C43f23ce52e8d42187d5608d6668f771b%7C7cf48d453ddb4389

Re: FC-250

> On Dec 20, 2018, at 7:15 AM, Pike, Christopher wrote: > > • Is there a way to give me permission to accept the PRs from github? Don’t know. I’d post that question to the dev list. > > On Dec 20, 2018, at 7:15 AM, Pike, Christopher wrote: > > • Understand that the fqcn field

Re: FC-250

> On Dec 19, 2018, at 3:10 PM, Pike, Christopher wrote: > > We use the fortress model java classes for our fortress rest service (both > server and client side). With the addition of that annotation it requires > there to now be a property named "fqcn" on every object or de-serialization >

Re: Model-Based Testing on the Apache Fortress project

uld like to extend my study to one real system and I think > that the Apache Fortress is perfect for it. > > > > On 13/12/2018 19:46, Shawn McKinney wrote: >>> On Dec 13, 2018, at 12:35 PM, C.D.N.Damasceno wrote: >>> >>> Besides the javadoc, is there

Re: Model-Based Testing on the Apache Fortress project

> On Dec 13, 2018, at 12:35 PM, C.D.N.Damasceno wrote: > > Besides the javadoc, is there any tutorial describing how to use the Apache > Fortress API? Hello Carlos, some code samples here:

[ANNOUNCE] Apache Fortress 2.0.3 Released

The Apache Directory Project announces its tenth release of Fortress! Apache Fortress is a computer security access management facility written in Java. Other platforms use the Apache Fortress Rest component. Fortress provides a fine-grained authorization security model using role-based access

New Fortress Release 2.0.3

Hello, This is notification of intent to begin working on a new release of fortress 2.0.3, includes enhancements and bug fixes: https://issues.apache.org/jira/issues/?jql=project%20%3D%2012315921%20AND%20fixVersion%20%3D%2012344047%20ORDER%20BY%20priority%20DESC%2C%20key%20ASC Please let me

Re: Anyone going to ApacheCon in Montreal?

> On Sep 13, 2018, at 6:04 AM, Colm O hEigeartaigh wrote: > > > Yes I'll be there as well - hope to see you there! Great! I saw that you’re speaking on Thursday. Pity that I’m leaving on that day. Looks like an interesting talk, hope it’s recorded. Will see you there... —Shawn

[ANNOUNCE] Apache Fortress 2.0.2 Released

The Apache Directory Project announces the ninth release of Fortress — 2.0.2. Apache Fortress is a computer security access management facility written in Java. Other platforms use the Apache Fortress Rest component. Fortress provides a fine-grained authorization security model using

Result, was: [VOTE] Apache Fortress 2.0.2 release

Hi, I’m closing this vote, it was successful. We received 4 binding +1 votes: Emmanuel, Stefan, Kiran and I. There were a few items caught during the voting. The signatures was fixed (-.md5, sha1, +sha256, sha512), per Emmanuel’s instructions. The other items related to installation docs,

Re: [VOTE] Apache Fortress 2.0.2 release

> On Sep 11, 2018, at 5:43 AM, Emmanuel Lécharny wrote: > > A few remarks : > > - signatures on dist should not supply a SHA1 signature (neither a MD5), > SHA256 or/and SHA512 should be provided bseside a .asc file. You can > easily add the sha256/512 signatures to the existing dist directory

Re: [VOTE] Apache Fortress 2.0.2 release

> On Sep 10, 2018, at 12:33 AM, Stefan Seelmann wrote: > > > PS: Build of fortress-core with Java 11+ea25 fails because java.xml.bind > is no longer part of JDK Thanks Stefan. Ticket created to track this issue. https://issues.apache.org/jira/browse/FC-244 —Shawn

[VOTE] Apache Fortress 2.0.2 release

Hello, This is an announcement to vote for the next release of Apache Directory Fortress. The version, 2.0.2, has a tag created for git: ‘2.0.2’. and the sources may be pulled using git commands: git clone --branch 2.0.2 https://git-wip-us.apache.org/repos/asf/directory-fortress-core.git git

Notice for new release -- 2.0.2

Hello, Just a friendly note, starting release preps for v2.0.2. If all goes well, voting should commence early next week. This release includes enhancements to solidify ABAC support into the API: * https://issues.apache.org/jira/projects/FC/versions/12343768 The next ‘scheduled’ release is

Re: New RoleConstraint Types for ABAC

> On Aug 24, 2018, at 1:49 PM, Yudhi Karunia Surtan > wrote: > > Ah sorry by mistake i accidentally mark your reply as read, that is why I > wonder why there is no reply yet about my question. > > I was asking because if I plan to move to the newest version from 1.x, what > kind of risk that

Re: New RoleConstraint Types for ABAC

> On Aug 24, 2018, at 10:57 AM, Shawn McKinney wrote: > >> >> On Aug 23, 2018, at 10:14 AM, Shawn McKinney wrote: >> >> Which will piggyback on the existing entity, repurposing some of its fields: >> String id;<— not used, left blank >>

Re: New RoleConstraint Types for ABAC

> On Aug 23, 2018, at 10:22 AM, Yudhi Karunia Surtan > wrote: > > > How about the compability with previous version? > If it is not compatible, is there a way for migrate it? > Thanks. Hello Yudhi, By compatibility, are you asking about the new functionality (generic abac), i.e. what was

New RoleConstraint Types for ABAC

Hello, Wanted to notify the community of upcoming change the RoleConstraint entity to support generic attributes. First, a bit of history. The RoleConstraint was added to support this enhancement a few years back: FC-116 - Need the ability to get user specific attributes for fine grained

[ANNOUNCE] Apache Fortress 2.0.1 Released

The Apache Directory Project announces the eighth release of Fortress — 2.0.1. Apache Fortress is a computer security access management facility written in Java. Other platforms use the Apache Fortress Rest component. Fortress provides a fine-grained authorization security model using

[VOTE] Apache Fortress 2.0.1 release, Take 2

Hello, This is an announcement to vote for the next release of Apache Directory Fortress. The version, 2.0.1, has a tag created for git: ‘2.0.1’. and the sources may be pulled using git commands: git clone --branch 2.0.1 https://git-wip-us.apache.org/repos/asf/directory-fortress-core.git git

  1   2   3   4   >