Plugin:org.tolven.gatekeeper

From DOC

Contents 1 Version 2.1 Notes 1.1 Version 2.1.6 1.2 Version 2.1.5 1.3 Version 2.1.4 1.4 Version 2.1.3 1.5 Version 2.1.2 1.6 Version 2.1.1 1.7 Version 2.1.0

Version 2.1 Notes

Version 2.1.6

• Fixed bug in thrown exception format that caused a logout during installation.
• There was a thread leak after calling WebService methods. To fix this performance issue, TolvenSecurityManager is now static, because only one is ever needed, and each holds a thread as long as it exists. This fix applies to all Web services.

Version 2.1.5

• The TolvenSecurityManager is now created only once and stored in a static member of QueueSessionInterceptor.

Version 2.1.4

• The gatekeeper.ear file now has a default-persistence-unit.jar in its lib directory listing all jars which contain entities. Those jars will normally also contain EJB APIs, which are also considered POJOs in JEE, thus forming a library jar.
• Added support for displaying notices on the login page.
• RESTful GET requests processed by RSAuthorizationFilter will be treated as read only, which prevents the session's being updated. Updates can interfere with another WAR file's making a request to obtain information from the Tolven GateKeeper via RS, if it too has the same session.
• Updated the Tolven logo.
• Changed annotation @Produces(Mediatype.APPLICATION_FORM_URLENCODED) to simply @Produces, because in no case was a form returned.
• Replaced the <listener>, <filter>, and <servlet> deployment descriptor tags in the web-fragment.xml and web.xml files with @WebListener, @WebFilter, and @WebServlet in cases where order is not important.
• Removed the "classes" extension for contributing classes to a war file's WEB-INF/classes directory to instead use a WEB-INF-LIB extension to contribute a jar containing those classes to the WEB-INF/lib directory of the war file.
• GatekeeperWebServletContextListener registers the following Shiro filters:
  • tauthc,org.tolven.gatekeeper.filter.TolvenFormAuthenticationFilter
• GatekeeperRSServletContextListener registers the following shiro filters:
  • rsauthz,org.tolven.gatekeeper.filter.RSAuthorizationFilter
• Added principal to the home page.
• Removed references to the appserver LDAP in favor of LdapManager class.
• Added the Shiro GatekeeperClientRealm as a part of the client library, which handles roles via session attributes as opposed to direct access to LDAP.
• Moved TolvenLdapRealm from org.tolven.shiro to org.tolven.gatekeeper, becau**se only Tolven GateKeeper has access to LDAP.
• Added to GatekeeperRSServletContextListener the shiroRealm: tolven,org.tolven.gatekeeper.realm.ldap.TolvenLdapRealm.
• Added to GatekeeperRSServletContextListener the shiroFilter: rsauthz,org.tolven.gatekeeper.filter.RSAuthorizationFilter.
• Added to GatekeeperWebServletContextListener the shiroRealm: tolven,org.tolven.gatekeeper.realm.ldap.TolvenLdapRealm.
• Added to GatekeeperWebServletContextListener the shiroFilter: tauthc,org.tolven.gatekeeper.filter.TolvenFormAuthenticationFilter.
• Because the appserver LDAP holding the rootDN password is no longer available, to prevent the admin from having to add their password twice (once to search for a user, and then again to reset the password), the reset password screen no longer provides the find user function, but will indicate if the user does not exist when the reset button is pressed.

Version 2.1.3

• Moved the "Manage Security Questions" and "Reset Login Password" to the home page, and along with "Create User", they are only visible to the admin user.
• Logout link now appears toward the top of the page, and has also been added the the Manage Login Password page.
• The LOGGED_IN log entry has now been moved to org.tolven.shiro code.
• Changed the directory resetLoginPassword to lowercase.
• Added a web.xml directly to war module plugins, which then forms the basis for default entries to which web-fragments contribute.
• Removed web-resource-name parameter from filter-adaptor extension.
• Added a web.xml directly to war module plug-ins, which then forms the basis for default entries to which web-fragments contribute.

Version 2.1.2

• Consolidated the following plug-ins into org.tolven.gatekeeper:
  • org.tolven.gatekeeper.config
  • org.tolven.gatekeeper.ejb
  • org.tolven.gatekeeper.html
  • org.tolven.gatekeeper.rs
  • org.tolven.gatekeeper.ws

Version 2.1.1

• Now depends on org.tolven.gatekeeper.ws.

Version 2.1.0

1. This new plug-in is the ear-declaration for gatekeeper.ear.