[jira] [Commented] (OFBIZ-6963) Single sign-on to OFBiz with CAS
[ https://issues.apache.org/jira/browse/OFBIZ-6963?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15766209#comment-15766209 ] james yong commented on OFBIZ-6963: --- Hi [~shi.jinghai], Will look into CAS SSO Server at a later date then. Thanks for the explanation. Regards > Single sign-on to OFBiz with CAS > > > Key: OFBIZ-6963 > URL: https://issues.apache.org/jira/browse/OFBIZ-6963 > Project: OFBiz > Issue Type: Improvement > Components: ALL APPLICATIONS >Affects Versions: Trunk >Reporter: james yong > > OFBiz is made up of several web applications. > To allow the user to sign in only once, a unique token value is presented for > verification each time the user navigates to an unvisited web application. > This approach has the following limitations: > 1) You cannot work with multiple windows, as there is only 1 valid token > value at any time and other token values will be invalid in older-opened > windows. > 2) There is a need to refresh the whole page, so that all links will contain > the valid token value. > 3) Not easy to compose a page that get contents from different web > applications in OFBiz > Adding CAS SSO component as a core into OFBiz will remove the limitations > mentioned above. -- This message was sent by Atlassian JIRA (v6.3.4#6332)
[jira] [Comment Edited] (OFBIZ-9152) SimpleMethod: FindByAnd never using EntityListIterator
[ https://issues.apache.org/jira/browse/OFBIZ-9152?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15764447#comment-15764447 ] Mirko Vogelsmeier edited comment on OFBIZ-9152 at 12/20/16 3:26 PM: Changed the method call to the correct one. (To be honest I did not run tests afterwards as gradle doesnt work with my ofbiz currently - I would be glad if someone else could do that) was (Author: vogelsme): Changed the method call to the propper one. > SimpleMethod: FindByAnd never using EntityListIterator > -- > > Key: OFBIZ-9152 > URL: https://issues.apache.org/jira/browse/OFBIZ-9152 > Project: OFBiz > Issue Type: Bug > Components: framework >Affects Versions: Trunk, Release Branch 16.11 >Reporter: Mirko Vogelsmeier > Fix For: Trunk > > Attachments: FindByAnd.java-OFBIZ-9152.tmp > > > Since the introduction of EntityQuery there was no distinction between a > simple method tags and use-iterator="false"> (except cache handling). > There is a condition "if (useIterator)" but with entityQueries did use > "[...].queryList()". -- This message was sent by Atlassian JIRA (v6.3.4#6332)
[jira] [Updated] (OFBIZ-9152) SimpleMethod: FindByAnd never using EntityListIterator
[ https://issues.apache.org/jira/browse/OFBIZ-9152?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Mirko Vogelsmeier updated OFBIZ-9152: - Attachment: FindByAnd.java-OFBIZ-9152.tmp Changed the method call to the propper one. > SimpleMethod: FindByAnd never using EntityListIterator > -- > > Key: OFBIZ-9152 > URL: https://issues.apache.org/jira/browse/OFBIZ-9152 > Project: OFBiz > Issue Type: Bug > Components: framework >Affects Versions: Trunk, Release Branch 16.11 >Reporter: Mirko Vogelsmeier > Fix For: Trunk > > Attachments: FindByAnd.java-OFBIZ-9152.tmp > > > Since the introduction of EntityQuery there was no distinction between a > simple method tags and use-iterator="false"> (except cache handling). > There is a condition "if (useIterator)" but with entityQueries did use > "[...].queryList()". -- This message was sent by Atlassian JIRA (v6.3.4#6332)
[jira] [Created] (OFBIZ-9152) SimpleMethod: FindByAnd not using EntityListIterator
Mirko Vogelsmeier created OFBIZ-9152: Summary: SimpleMethod: FindByAnd not using EntityListIterator Key: OFBIZ-9152 URL: https://issues.apache.org/jira/browse/OFBIZ-9152 Project: OFBiz Issue Type: Bug Components: framework Affects Versions: Release Branch 16.11, Trunk Reporter: Mirko Vogelsmeier Fix For: Trunk Since the introduction of EntityQuery there was no distinction between a simple method tags and (except cache handling). There is a condition "if (useIterator)" but with entityQueries did use "[...].queryList()". -- This message was sent by Atlassian JIRA (v6.3.4#6332)
[jira] [Updated] (OFBIZ-9152) SimpleMethod: FindByAnd never using EntityListIterator
[ https://issues.apache.org/jira/browse/OFBIZ-9152?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Mirko Vogelsmeier updated OFBIZ-9152: - Summary: SimpleMethod: FindByAnd never using EntityListIterator (was: SimpleMethod: FindByAnd not using EntityListIterator) > SimpleMethod: FindByAnd never using EntityListIterator > -- > > Key: OFBIZ-9152 > URL: https://issues.apache.org/jira/browse/OFBIZ-9152 > Project: OFBiz > Issue Type: Bug > Components: framework >Affects Versions: Trunk, Release Branch 16.11 >Reporter: Mirko Vogelsmeier > Fix For: Trunk > > > Since the introduction of EntityQuery there was no distinction between a > simple method tags and use-iterator="false"> (except cache handling). > There is a condition "if (useIterator)" but with entityQueries did use > "[...].queryList()". -- This message was sent by Atlassian JIRA (v6.3.4#6332)
[jira] [Commented] (OFBIZ-6963) Single sign-on to OFBiz with CAS
[ https://issues.apache.org/jira/browse/OFBIZ-6963?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15763893#comment-15763893 ] Shi Jinghai commented on OFBIZ-6963: Sorry James, I misunderstood your comment. Sorry for my bad English. Personally, I think CAS is the right choice, but the learning curve may be steep. The cookie and token implement of CAS is more suitable for OFBiz then Tomcat SSO and for further extension. For example, with CAS + Shiro component, OFBiz can provide a long term token (i.e. one month token) specially to Android/iOS APPs, and the token can be verified as a bearer in http header. Kind Regards, > Single sign-on to OFBiz with CAS > > > Key: OFBIZ-6963 > URL: https://issues.apache.org/jira/browse/OFBIZ-6963 > Project: OFBiz > Issue Type: Improvement > Components: ALL APPLICATIONS >Affects Versions: Trunk >Reporter: james yong > > OFBiz is made up of several web applications. > To allow the user to sign in only once, a unique token value is presented for > verification each time the user navigates to an unvisited web application. > This approach has the following limitations: > 1) You cannot work with multiple windows, as there is only 1 valid token > value at any time and other token values will be invalid in older-opened > windows. > 2) There is a need to refresh the whole page, so that all links will contain > the valid token value. > 3) Not easy to compose a page that get contents from different web > applications in OFBiz > Adding CAS SSO component as a core into OFBiz will remove the limitations > mentioned above. -- This message was sent by Atlassian JIRA (v6.3.4#6332)
[jira] [Commented] (OFBIZ-6963) Single sign-on to OFBiz with CAS
[ https://issues.apache.org/jira/browse/OFBIZ-6963?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15763798#comment-15763798 ] james yong commented on OFBIZ-6963: --- Hi [~shi.jinghai], May I know if you mean a patch for CAS SSO or Tomcat SSO? I am looking at the following link for Tomcat SSO. https://tomcat.apache.org/tomcat-7.0-doc/config/host.html#Single_Sign_On Regards > Single sign-on to OFBiz with CAS > > > Key: OFBIZ-6963 > URL: https://issues.apache.org/jira/browse/OFBIZ-6963 > Project: OFBiz > Issue Type: Improvement > Components: ALL APPLICATIONS >Affects Versions: Trunk >Reporter: james yong > > OFBiz is made up of several web applications. > To allow the user to sign in only once, a unique token value is presented for > verification each time the user navigates to an unvisited web application. > This approach has the following limitations: > 1) You cannot work with multiple windows, as there is only 1 valid token > value at any time and other token values will be invalid in older-opened > windows. > 2) There is a need to refresh the whole page, so that all links will contain > the valid token value. > 3) Not easy to compose a page that get contents from different web > applications in OFBiz > Adding CAS SSO component as a core into OFBiz will remove the limitations > mentioned above. -- This message was sent by Atlassian JIRA (v6.3.4#6332)
[jira] [Commented] (OFBIZ-6963) Single sign-on to OFBiz with CAS
[ https://issues.apache.org/jira/browse/OFBIZ-6963?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15763613#comment-15763613 ] Shi Jinghai commented on OFBIZ-6963: Great! Hope to see your patch soon. CAS SSO is promising, and with Shiro, you can make OFBiz be a OAuth2 provider. BTW, you can also replace the current externalLoginKey to TGC value. > Single sign-on to OFBiz with CAS > > > Key: OFBIZ-6963 > URL: https://issues.apache.org/jira/browse/OFBIZ-6963 > Project: OFBiz > Issue Type: Improvement > Components: ALL APPLICATIONS >Affects Versions: Trunk >Reporter: james yong > > OFBiz is made up of several web applications. > To allow the user to sign in only once, a unique token value is presented for > verification each time the user navigates to an unvisited web application. > This approach has the following limitations: > 1) You cannot work with multiple windows, as there is only 1 valid token > value at any time and other token values will be invalid in older-opened > windows. > 2) There is a need to refresh the whole page, so that all links will contain > the valid token value. > 3) Not easy to compose a page that get contents from different web > applications in OFBiz > Adding CAS SSO component as a core into OFBiz will remove the limitations > mentioned above. -- This message was sent by Atlassian JIRA (v6.3.4#6332)