Plugin:org.tolven.gatekeeper.authorization

Version 2.1 Notes

Added URLs for the new top context /rs for the tolvenRS.war, which supports RESTful calls.

Replaced the filter name rspreauthz with rspreauthc to indicate that the latter does authentication, while it is the filter called troles which does the authorization (authz).
Made a fix to fix RESTful API access by removing the tolvenAdmin role from the /api/** URL permissions (which is the default).
Also removed specific entries for /api/accounts and /api/accountTypes, which now default to those for /api/** (that is, not requiring tolvenAdmin role).

All /api (primarily used by admin) and admin specific gatekeeper functionality now requires the role tolvenAdmin.
Corrected case-sensitivity for resetloginpassword url to have all lowercase.

The org.tolven.gatekeeper.ws plug-in is deprecated; therefore, its entries for URL authorization have been removed.

Removed URL permission entries for /ws, because for Web services, permissions cannot be handled by TolvenShiroFilter, which has now been removed in favor of JAX-WS handlers.

URL permissions has been tightened up some more, especially with respect to /api RESTful. All known URLs should now start to appear here, before a full cut-off of unknown URLs is made.
Added a number of URL permissions to target the tolvenWEB Web directories.

Removed the abort functionality for when a table is left intentionally populated with the same rows, indexes, etc. This was done to prevent a duplicate key error.
Added a -tablePrefix option to handle schema names for the tovlenauth table for both PostgreSQL and Oracle.

This new plug-in contains the default URL permissions for Shiro. During installation, the default URL permissions are loaded to the database using an SQL file.