https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #37 from Christopher Schultz
2012-03-15 19:37:54 UTC ---
(In reply to comment #36)
> Dear Christopher,
> I will really appreciate if you will rename the X509SubjectDnRetriever class
> to
> X509DefaultSubjectDnRetriever.
> Plea
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #36 from Michael 2012-03-14 19:17:59
UTC ---
Dear Christopher,
I will really appreciate if you will rename the X509SubjectDnRetriever class to
X509DefaultSubjectDnRetriever.
Please, please do it for me – it take about 3 min to
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #35 from Michael 2012-03-11 19:48:23
UTC ---
Dear Christopher,
Thank you for the patch!
Any case, I will happy if you will change the X509SubjectDnRetriever class to
X509DefaultSubjectDnRetriever. In this case I will be able to
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #34 from Michael 2012-03-11 19:47:02
UTC ---
Created attachment 28450
--> https://issues.apache.org/bugzilla/attachment.cgi?id=28450
Suggested patch for x509 configuration
--
Configure bugmail: https://issues.apache.org/bug
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
Christopher Schultz changed:
What|Removed |Added
Status|NEW |RESOLVED
Resolution|
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #32 from Michael 2012-02-29 20:05:29
UTC ---
Dear Christopher,
Did you see my patch?
Do you have any comments?
Best regards,
Michael
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
---
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #31 from Michael 2012-02-26 20:40:43
UTC ---
Dear Christopher,
Sometimes it is better to wait :)
I have updated the patch.
It was typo in the name. I have changed x509UserNameRetrieveConfiguration to
x509UserNameRetrieverConfig
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
Michael changed:
What|Removed |Added
Attachment #28349|0 |1
is obsolete|
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
Michael changed:
What|Removed |Added
Attachment #28348|0 |1
is obsolete|
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #28 from Michael 2012-02-24 19:00:50
UTC ---
Dear Christopher,
Did you see my patch?
Do you have any comments?
Best regards,
Michael
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
---
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #27 from Michael 2012-02-18 08:39:43
UTC ---
Dear Christopher,
Thank you for your comments!
Please find attached patch.
1)I have renamed my classes to X509UserNameRetriever and to
X509SubjectDnRetriever
2)The Realm inte
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
Michael changed:
What|Removed |Added
Attachment #28309|0 |1
is obsolete|
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
Michael changed:
What|Removed |Added
Attachment #28308|0 |1
is obsolete|
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #24 from Christopher Schultz
2012-02-14 17:49:48 UTC ---
Michael,
> >I'm not sure why either of these are necessary.
> >I think that UserNameRetriever (maybe a better name
> >would be X509UserNameRetriever now that I think ab
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #23 from Michael 2012-02-14 08:00:19
UTC ---
Dear Christopher,
Thank you for the fast reply!
>That looks great.
Thanks!
>I'm not sure why either of these are necessary.
>I think that UserNameRetriever (maybe a better name
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #22 from Christopher Schultz
2012-02-13 20:51:40 UTC ---
> Please find attached patch that provide OOTB UserNameRetriever that retrieve
> the user name from SubjectDN without any additional dependency.
That looks great.
> I h
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #21 from Michael 2012-02-13 07:51:50
UTC ---
Dear Christopher,
Sorry for the delay!
Please find attached patch that provide OOTB UserNameRetriever that retrieve
the user name from SubjectDN without any additional dependency.
I
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
Michael changed:
What|Removed |Added
Attachment #28238|0 |1
is obsolete|
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
Michael changed:
What|Removed |Added
Attachment #28237|0 |1
is obsolete|
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #18 from Christopher Schultz
2012-02-03 14:48:40 UTC ---
(In reply to comment #17)
> 1)I do not like the place that I use now to call to
> createUserIdentifierRetriever method
> I want to call it when Realm is instantiated
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #17 from Michael 2012-02-02 18:31:36
UTC ---
Dear Christopher,
Thank you for your comments!
I need couple of clarifications
1)I do not like the place that I use now to call to
createUserIdentifierRetriever method
I want to
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #16 from Christopher Schultz
2012-02-01 20:57:49 UTC ---
(In reply to comment #11)
> - I have provided a default transformation that is the same as the current
> code
> - DefaultSubjectDnRetriever
>
> Any case, I strongly re
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
Michael changed:
What|Removed |Added
Attachment #28199|0 |1
is obsolete|
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
Michael changed:
What|Removed |Added
Attachment #28200|0 |1
is obsolete|
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #13 from Michael 2012-01-30 20:27:30
UTC ---
Dear Mark,
I still need your inputs on my suggestions.
1)I do not understand if you want to use SubjectAlternativeNameRetriever
OOTB
2)I do not understand if you want support
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #12 from Michael 2012-01-26 04:22:58
UTC ---
Dear Mark,
On the second mind: if you will agree for my suggestion to provide OOTB both
SubjectAlternativeNameRetriever and SubjectDnRetriever you will not need to
support users tran
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #11 from Michael 2012-01-24 15:51:11
UTC ---
Dear Mark,
Thank you for the comments!
- I have defined an interface for transforming certs to user names -
UserIdentifierRetriever
- I have added an attribute to RealmBase that allo
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
Michael changed:
What|Removed |Added
Attachment #28190|0 |1
is obsolete|
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
Michael changed:
What|Removed |Added
Attachment #28191|0 |1
is obsolete|
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #8 from Mark Thomas 2012-01-24 11:03:28 UTC ---
The suggestion is to make all Realm's more configurable be modifying RealmBase.
One option would be:
- define an interface for transforming certs to user names
- allow users to wri
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #7 from Michael 2012-01-23 19:49:26
UTC ---
Hi!
Can we copy the following classes to Tomcat baseline?
http://geronimo.apache.org/apidocs/2.0.1/org/apache/geronimo/util/asn1/ASN1InputStream.html
http://geronimo.apache.org/apidoc
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #6 from Michael 2012-01-23 19:28:08
UTC ---
Dear Mark,
Thank you for the fastest comment!
>Patches should be provided in diff -u format against, in preference order:
I will try to do it when we will finalize patch.
>The in
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
Mark Thomas changed:
What|Removed |Added
Severity|normal |enhancement
--- Comment #5 from Mark
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #4 from Mark Thomas 2012-01-23 13:32:33 UTC ---
Patches should be provided in diff -u format against, in preference order:
- trunk
- 7.0.x/trunk
- 7.0.x/tags/
- 7.0.x/tags/
The intended way to do this is to override the Realm i
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #3 from Michael 2012-01-23 13:22:16
UTC ---
Hi!
I want to improve current implementation of the client certificate
authentication (SSLAuthenticator)
Current implementation of SSLAuthenticator takes the user identifier from the
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
Michael changed:
What|Removed |Added
Attachment #28190|Examples of x509|Java Code
description|authenticat
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #2 from Michael 2012-01-23 13:21:33
UTC ---
Created attachment 28191
--> https://issues.apache.org/bugzilla/attachment.cgi?id=28191
Examples of x509 authentication
--
Configure bugmail: https://issues.apache.org/bugzilla/us
https://issues.apache.org/bugzilla/show_bug.cgi?id=52500
--- Comment #1 from Michael 2012-01-23 13:20:15
UTC ---
Created attachment 28190
--> https://issues.apache.org/bugzilla/attachment.cgi?id=28190
Examples of x509 authentication
Code that allow to improve current implementation of the cli
38 matches
Mail list logo
