Plugin:org.tolven.library.tolvencommon

From DOC

This plugin contains functions common to all of Tolven. It is used by the Tolven Plugin Framework (TPF), Remote Clients, the EJB application server, Web applications, Configuration manager, etc.

Note to developers: Do not create any circular dependencies from this plugin to plugins that depend on it. For example, it may be tempting to include methods that accept "core" Entities defined in tolvenejb.

Contents 1 Version 2.1 Notes 1.1 Version 2.1.10 1.2 Version 2.1.9 1.3 Version 2.1.8 1.4 Version 2.1.7 1.5 Version 2.1.6 1.6 Version 2.1.5 1.7 Version 2.1.4 1.8 Version 2.1.3 1.9 Version 2.1.2 1.10 Version 2.1.1 1.11 Version 2.1.0 2 Version 2 Notes 2.1 Version 2.0.19 2.2 Version 2.0.18 2.3 Version 2.0.17 2.4 Version 2.0.16 2.5 Version 2.0.15 2.6 Version 2.0.14 2.7 Version 2.0.13 3 Version Notes 3.1 Version 0.0.12 3.2 Version 0.0.11 3.3 Version 0.0.10 3.4 Version 0.0.9 3.5 Version 0.0.8 3.6 Version 0.0.7 3.7 Version 0.0.6 3.8 Version 0.0.5 3.9 Version 0.0.3

Version 2.1 Notes

Version 2.1.10

• ExceptionFormatter did not show full error message. To address this, ExceptionFormatter's e.getMessage() was changed to e.toString().

Version 2.1.9

• Added the method findUser to DefaultLdapManager.
• LdapManager can now return roles for a user.

Version 2.1.8

• Added the following role methods to TolvenSubject:
  • hasAllRoles(Collection<String> roleIdentifiers);
  • hasRole(String roleIdentifier);
  • hasRoles(List<String> roleIdentifiers);

Version 2.1.7

• Changed exception name from Gatekeeper*Exception to Tolven*Exception.
• Removed directory gatekeeper because it contained now unused classes.
• Moved QueueKeyLocal and UserKeyLocal to org.tolven.gatekeeper.
• Moved a number of shiro classes to org.tolven.shiro.

Version 2.1.6

• Removed the following unused manifest extension-points that were used to add zip files to tolvenWEB/download which were needed by TPF for RMI library downloads to its remoteLib directory. TPF now uses the RESTful API.
  • downLoadWeb
  • remoteFile
  • remoteProductDir

Version 2.1.5

• Removed WSGatekeeperClientLocal.
• Upgraded Jersey from v1.3 to v1.5.

Version 2.1.4

• Added WSGatekeeperClientLocal to handle WS authentication.
• RSGatekeeperClientLocal logic for login has been changed so that a parameter can now be added to indicate whether a newSession is required or not.

Version 2.1.3

• In the TolvenGateKeeper, if you entered a wrong password for admin while creating a user, a browser stacktrace was returned. Now, a message that the authentication failed is supplied. To accomplish this, GatekeeperAuthenticationException and GatekeeperAuthorizationException now use the @ApplicationException, which will not roll back the transaction when thrown from an EJB.

Version 2.1.2

• Removed functionality for obtaining a locale based on TolvenUser locale and AccountUser Locale. That functionality is now located in TolvenRequest.
• Added the RSGatekeeperClientLocal method to org.tolven.library.tolvencommon, which determines if a TolvenPerson exists in LDAP.
• Fixed a bug whereby users could be created without userPKCS12 when created by RESTful call, even though keysOptional was set to false.
• Added some debug and info statements updates to ensure that the principal (user) making the changes, and their realm, are shown when creating users, resetting passwords, etc. for auditing purposes.

Version 2.1.1

• Added GatekeeperSecurityException, GatekeeperAuthenticationException, and GatekeeperAuthorizationException to distinguish security-related exceptions.
• Changed method signatures that involve the triple: userId, password, and realm, so that the signature has the order shown here, where possible, to foster a more consistent order of parameters to prevent confusion.
• Added LdapManager, which now handles virtually all interaction with LDAP.
• Moved TolvenPerson from org.tolven.jndi to org.tolven.library.tolvencommon.
• Moved CertificateHelper from org.tolven.gatekeeper.ejb to org.tolven.library.tolvencommon.

Version 2.1.0

• Now uses plug-in manager build sections.

• The status class was moved from org.tolven.component.tolvenejb to here so that it can be used by both the tolven.ear and gatekeeper.ear files.

• Added a number of *Local interfaces, so that EJB beans in any ear file can implement the interfaces defined. These *Local interfaces are expected to be common, otherwise the interface would be contributed by its own plug-in.

• Now contains UserKeyLocal, which can be used to obtain public keys and certificates.

• Now contains a number of new TolvenGateKeeper classes that are now considered common in Tolven.

• Added TolvenSessionNotFoundException.

Version 2 Notes

Version 2.0.19

1. Inter-war file RESTful API calls from tolvenWEB to tolvenAPI were returned to their V0 counterpart of using Local interface calls. That means vestibule code handled by tolvenAPI on behalf of tolvenWEB was moved back to tolvenWEB. Also, TolvenResourceBundle is no longer stored in the session. It can be retrieved anywhere in the Web tier using the SessionResourceBundleFactory. The TolvenResouceBundle is valid only for the session in which it was obtained. The tolvenCommon.jar is no longer deployed to the Glassfish lib directory, and should be removed by users after they upgrade to this snapshot's version of the org.tolven.library.common.

Version 2.0.18

1. Minor, non-functional changes were made to accommodate Tolven's release build process.

Version 2.0.17

1. Added exception display methods

Version 2.0.16

1. Moved TolvenPropertiesMap from tolvenEJB to tolvenCommon, and upgraded it to have the user's default properties, and allow them to be updated or added to directly as part of a transactional call to tolvenAPI

Version 2.0.15

1. XAccountUser is sent from tolvenAPI to tolvenWeb in the Jersey response as an XML as opposed to storing it in the SSO session. It is stored in the HttpSession in tolvenWeb
2. System properties, account user properties, etc are sent from tolvenAPI to tolvenWeb in a Jersey response as an XML
3. All properties in tolvenWeb are now part of TolvenResourceBundle which is stored in the HttpSession, and can be accessed via JSF or Java POJOs

Version 2.0.14

1. Replaced com.sun.el.ExpressionFactoryImpl with javax.el.ExpressionFactory, which updates tolvenCommon and thus the kit version

Version 2.0.13

1. Fixed bug where repositoryRuntime could not be deleted by TPF occasionally (closed an open InputStream during manifest read)

Version Notes

Version 0.0.12

1. Added a libJar extension point to add jars to the appserver lib directory

Version 0.0.11

1. Moved all JAAS classes from org.tolven.library.tolvencommon to org.tolven.jaas
2. tolvenJAAS.jar now appears with tolvenCommon.jar in the server's lib directory

Version 0.0.10

1. Separated the application server SSL keyStore password and main Tolven keyStore password, which previously had to be identical, by no retrieving the SSL password from the keyStore using the newly added org.tolven.ssl.keyStorePasswordId property.

Version 0.0.9

1. KeyLoginModule now authenticates user directly by password, as opposed to authentication binding
2. Added the only used apache Base64 class to tolvenCommon.jar

Version 0.0.8

1. tolvenCommon.jar is now also a remote jar located in tolvenweb's download directory.

Version 0.0.7

1. Make ResourceBundleHelper::getLocale method public. This accounts for the fact that the final Locale String can be acquired prior to calling the helper.

Version 0.0.6

1. Removed unused legacy private key columns from TolvenUser

Version 0.0.5

1. LoginModule output is now via logger debug() instead of info()

Version 0.0.3

Add the ability to add functions to the Expression Evaluator.