org.forgerock / org.forgerock.opendj

20 Jun, 2007

1 commit

  • 79382956   This refactoring includes the following changes to the JE backend: ... Browse Dir » 
    - Extracted common interface DatabaseContainer from DN2ID, ID2Entry, etc... classes.
- Moved database read and write methods from EntryContainer to DatabaseContainer.
- Added index configuration to the XML based admin framework.
- Removed redundant configuration objects (Config, IndexConfig).
- Added exclusive/shared lock to EntryContainer. All access to an EntryContainer must acquire a lock before using the internal 
DatabaseContainers or making configuration changes.
- Added the ability to add/remove/modify indexes with the backend online. Server will issue rebuild required warning when adding new indexes 
or sub-indexes (equality, substring, presence...).
- Added the ability to change the index entry limit for both the backend and each index with the backend online. Server will issue rebuild 
required warning if the previous limit has been exceeded.
- Added the ability to change entry compression and index substring length setting while the backend is online.
- Added a persistent state database to each EntryContainer to persist backend configuration between server restarts. Server will issue 
rebuild required warning if a new index is added when the backend is offline.
- Added a trusted flag to indexes so that non existent keys will not be interpreted as an empty entry ID set when an index is untrusted. An 
index is untrusted when it is added to an non-empty EntryContainer or an inconsistency is detected. Server will issue warning on startup to 
rebuild the index. 
- Fixed a issue where the LDIF import process stops responding if the temporary import dir is full or unwritable. 

Fix for issue 1480 1455 1575


git-svn-id: https://svn.forgerock.org/opendj/trunk@2135 41b1ffd8-f28e-4786-ab96-9950f0a78031
    boli
     

11 May, 2007

1 commit

03 May, 2007

2 commits

  • 5ec7b4df   Major changes made to the logging framework. It should resolve the following issues: ... Browse Dir » 
    1. Migrated configuration to the new admin framework.
2. Removed all dependencies on the JDK logger. (Issue 1503)
3. Added option to set the file permissions on all log files. (Issue 202)
4. Added option to write log files asynchronously.
5. Retention and rotation policies are now separate managed objects registered to the Directory Server.
6. Rotation and retention policies are not extensible.
6. Post-rotation actions are not yet implemented in this set of changes.
7. Tools and tasks can now use a custom log publisher that only picks up messages generated by a specific thread or thread group.
8. Debug logger no longer creates a log record object for every message. 
9. Configurable Log File Paths (Issue 174)
10. Log Level Support by Category/Severity. This capability is limited for error logger. (Issue 177)
11. Support log file rotation (Issue 188)
12. Sized-based, Time-based rotation policies (Issues 190, 191)
13. Time-based, max size-based, file count-based retention policies (Issues 199, 201, 202)
14. Debug logger configurable via the admin framework (Issue 836)



git-svn-id: https://svn.forgerock.org/opendj/trunk@1805 41b1ffd8-f28e-4786-ab96-9950f0a78031
    boli
     
  • 2606575c   This is a checkin for Issue #311 "CRYPT Storage Scheme Support". This ... Browse Dir » 
    code was contributed externally by java.net user bdamm.

The crypt implementation itself was ported from the C-based one
OpenSolaris.  Since the OpenSolaris code is covered under the CDDL,
we're okay to include it in OpenDS, but I've opened issue 1573 to
remind us to make sure that we got all of the copyrights right etc.


git-svn-id: https://svn.forgerock.org/opendj/trunk@1801 41b1ffd8-f28e-4786-ab96-9950f0a78031
    davidely
     

02 May, 2007

1 commit

24 Apr, 2007

1 commit

  • 01792e94   Make several significant changes to the OpenDS code base, including: ... Browse Dir » 
    - Narrow down the set of packages that external developers will need to access
  in order to write a plugin or other type of extension.  Hopefully, for most
  things developers will only need to interact with the following packages (and
  their sub-packages):
  * org.opends.server.admin
  * org.opends.server.api
  * org.opends.server.config
  * org.opends.server.protocols.internal
  * org.opends.server.types
  * org.opends.server.util

- As part of the attempted narrowing of packages that external developers need
  to access, I have moved the org.opends.server.core.Operation and
  org.opends.server.protocols.ldap.LDAPException classes to the
  org.opends.server.types package.  I have also created
  org.opends.server.types.RawAttribute to wrap the
  org.opends.server.protocols.ldap.LDAPAttribute class, and
  org.opends.server.types.RawModification to wrap the
  org.opends.server.protocols.ldap.LDAPModification class.

- I have updated the internal operations API to add a few new convenience
  methods when performing internal operations.

- I have updated all of our message strings so that none of them end in periods
  (except those that end with an ellipsis).  This will help us avoid the
  problem in which we see multiple periods due to embedding one message in
  another.

- I have moved a message file from a synchronizaiton package to the messages
  package and resolved conflicts with existing message IDs.

- I have updated a number of cases in which
  StaticUtils.stackTraceToSingleLineString() was used in client-facing code to
  replace those calls with StaticUtils.getExceptionMessage() instead.  This
  should provide a more user-friendly message that will hopefully not reduce
  our ability to debug problems that may arise.

- I have cleaned up some of the code in the org.opends.server.api package so
  that all of the classes use consistent formatting, and to fix a couple of
  potential Javadoc problems.

- I have moved the build-tools/src directory to src/build-tools to be more
  consistent with other components of the server.

- I have updated the build script so that the xslt task will no longer dump
  lots of output to the terminal when generating code.  I have also gotten rid
  of warnings about run.classpath not being set properly.


git-svn-id: https://svn.forgerock.org/opendj/trunk@1695 41b1ffd8-f28e-4786-ab96-9950f0a78031
    neil_a_wilson
     

20 Apr, 2007

1 commit

13 Apr, 2007

1 commit

  • acfbc4a5   Update the member virtual attribute implementation so that it provides a ... Browse Dir » 
    mechanism for preventing the entire member list from being returned, which can
be a very expensive operation.  When running with this configuration, the
attribute will handle requests that determine whether a given user is a member
of the group, but will not list the entire set of membership.

OpenDS Issue Number:  1506


git-svn-id: https://svn.forgerock.org/opendj/trunk@1628 41b1ffd8-f28e-4786-ab96-9950f0a78031
    neil_a_wilson
     

10 Apr, 2007

1 commit

  • 59b9d1d7   Added the following capabilities to OpenDS: ... Browse Dir » 
    - Index rebuilding capabilities. All indexes including system and attribute indexes can 
be rebuilt. Each index will be rebuilt by a seperate thread to increase performance. A 
max number of rebuild threads could be set to limit the resources used by large rebuild 
jobs. Partial rebuilds of attribute indexes could also be done by specifying the 
attribute index type after the attribute type (ie. sn.approximate).
- Index rebuilding standalone tool. Rebuilding of attribute indexes could be done with 
the backend online. However, rebuilds including system indexes must be done with the 
backend offline.
- Index rebuilding task. Rebuilding of attribute indexes are done with the backend 
online. Rebuilds that include system indexes will be performed after bring the backend 
offline. The user must have index-rebuild privilages to rebuild indexes.
- Approxitae indexing capability. The value of the attribute will be normalized using 
the approximate maching rule of that attribute type. This is used as the key for the 
index. Approximate indexes are fully supported by the index verify, rebuild, and import 
jobs.
- Fixed bug in build.xml where weave is enabled even if a test.* property is set.
- Consolidated some common tool messages.
- Consolidated some JE backend methods common to all tools.
- Added unit tests for rebuild job and approximate indexes.

Fix for issues 35, 39, 40, 41


git-svn-id: https://svn.forgerock.org/opendj/trunk@1607 41b1ffd8-f28e-4786-ab96-9950f0a78031
    boli
     

22 Mar, 2007

1 commit

12 Mar, 2007

1 commit

21 Feb, 2007

1 commit

  • 7950ddbe   Redesign the server to support multiple key manager providers, trust manager ... Browse Dir » 
    providers, and certificate mappers, and update the components which need access
to those elements so that they can specify which one they want to use.  Among
other things, this will provide the ability to use different certificates for
different listeners, and provide template configuration entries that make it
easier for users to enable SSL and/or StartTLS.

OpenDS Issue Number:  561


git-svn-id: https://svn.forgerock.org/opendj/trunk@1212 41b1ffd8-f28e-4786-ab96-9950f0a78031
    neil_a_wilson
     

13 Feb, 2007

1 commit

24 Nov, 2006

1 commit

23 Oct, 2006

1 commit

19 Oct, 2006

1 commit

06 Oct, 2006

2 commits

29 Sep, 2006

2 commits

  • c22c6a05   Make several test case updates: ... Browse Dir » 
    - Add additional test cases for abandon operations.

- Add a set of test cases for bind operations.

- Add a new short circuit plugin that can be used to force plugin to cause
  operation processing to end prematurely and with a specified result.


git-svn-id: https://svn.forgerock.org/opendj/trunk@490 41b1ffd8-f28e-4786-ab96-9950f0a78031
    neil_a_wilson
     
  • b35b60a9   Update the unit test configuration so that exception stack traces will not be ... Browse Dir » 
    written to the debug log by default.  This will primarily help reduce the
amount of output generated when running the tests with assertions enabled, and
will help dramatically cut down the size of the e-mail message generated by the
daily build process.


git-svn-id: https://svn.forgerock.org/opendj/trunk@486 41b1ffd8-f28e-4786-ab96-9950f0a78031
    neil_a_wilson
     

26 Sep, 2006

1 commit

  • feba495c   Add several changes related to testing: ... Browse Dir » 
    - Add a new plugin that can be used to terminate client connections at specific
  points in plugin processing when an appropriate control is included in the
  request.

- Add a new plugin that can be used to count the number of times that various
  types of plugins are invoked.  Update the startServer and shutdownServer
  methods in TestCaseUtils to ensure that the startup and shutdown plugins are
  invoked at the right times.

- Add test cases for the DirectoryException and InitializationException
  classes.

- Create an OperationTestCase superclass that can be used for testing generic
  methods in the Operation class.  Create an AbandonOperationTestClass subclass
  that tests the core Abandon operation.


git-svn-id: https://svn.forgerock.org/opendj/trunk@477 41b1ffd8-f28e-4786-ab96-9950f0a78031
    neil_a_wilson
     

25 Sep, 2006

1 commit

  • 9469896d   Add a set of certificates for use in testing the server with SSL and StartTLS. ... Browse Dir » 
    The certificates are valid for 20 years, so we won't need to change them for a
while.  They are self-signed, but there are also trust stores available so that
clients can trust them without needing to resort to blindly trusting all
certificates.  There is a client certificate that is adequate for use with SASL
EXTERNAL.  Both the client and server certificates are available in both JKS
and PKCS#12 formats.

The commands used to generate these certificates are as follows:

$ /usr/java5/bin/keytool -genkey -alias server-cert -keyalg rsa -dname 'CN=OpenDS Test Certificate,O=OpenDS.org' -keystore server.keystore -storepass password -keypass password
$ /usr/java5/bin/keytool -selfcert -alias server-cert -validity 7305 -keystore server.keystore -storepass password

$ /usr/java5/bin/keytool -export -rfc -alias server-cert -file /tmp/server.cert -keystore server.keystore -storepass password
$ /usr/java5/bin/keytool -import -alias server-cert -file /tmp/server.cert -keystore server.truststore -storepass password

$ /usr/java5/bin/keytool -genkey -alias client-cert -keyalg rsa -dname 'CN=Test User,O=Test' -keystore client.keystore -storepass password -keypass password
$ /usr/java5/bin/keytool -selfcert -alias client-cert -validity 7305 -keystore client.keystore -storepass password
$ /usr/java5/bin/keytool -import -alias server-cert -file /tmp/server.cert -keystore client.truststore -storepass password

$ /usr/java5/bin/keytool -export -rfc -alias client-cert -file /tmp/client.cert -keystore client.keystore -storepass password
$ /usr/java5/bin/keytool -import -alias client-cert -file /tmp/client.cert -keystore server.truststore -storepass password
$ /usr/java5/bin/keytool -import -alias client-cert -file /tmp/client.cert -keystore client.truststore -storepass password

$ keytool -importkeystore -srckeystore server.keystore -destkeystore server-cert.p12 -srcstoretype JKS -deststoretype PKCS12 -srcstorepass password -deststorepass password -srcalias server-cert -destalias server-cert -srckeypass password -destkeypass password
$ keytool -importkeystore -srckeystore client.keystore -destkeystore client-cert.p12 -srcstoretype JKS -deststoretype PKCS12 -srcstorepass password -deststorepass password -srcalias client-cert -destalias client-cert -srckeypass password -destkeypass password


git-svn-id: https://svn.forgerock.org/opendj/trunk@449 41b1ffd8-f28e-4786-ab96-9950f0a78031
    neil_a_wilson
     

23 Sep, 2006

1 commit

19 Sep, 2006

1 commit

  • 55486be6   add a test for JMX with SSL, ... Browse Dir » 
    This test is currently disabled because it fails.

This test uses a keystore containing a self-signed certificate : tests/unit-tests-testng/resource/jmxkeystore
that is copied in the package at the TestCaseUtils.startServer time

This change also fix the warning  in the JMX test

git-svn-id: https://svn.forgerock.org/opendj/trunk@378 41b1ffd8-f28e-4786-ab96-9950f0a78031
    gbellato
     

18 Sep, 2006

2 commits

  • 5533f731   Added the ability to run unit tests in parallel on the same machine by randomly ... Browse Dir » 
    choosing the ports the test server uses. The startServer() method picks 3 unused ports and writes them out to config-changes.ldif. It replaces the tokens "#ldapport#", "#jmxport#", and "#ldapsport#" with the port numbers. The getServerLdapPort etc. methods will return the ports assigned to those listeners.

Fix for issue 657


git-svn-id: https://svn.forgerock.org/opendj/trunk@375 41b1ffd8-f28e-4786-ab96-9950f0a78031
    boli
     
  • 0d43c09b   Add test cases for various server elements, including: ... Browse Dir » 
    - The entryUUID plugin
- The password policy import plugin
- The LDAP attribute description list plugin
- The LastMod plugin
- The length-based password validator
- The default entry cache
- The null connection security provider
- The internal connection security provider
- The ANONYMOUS SASL mechanism handler
- The CRAM-MD5 SASL mechanism handler


git-svn-id: https://svn.forgerock.org/opendj/trunk@373 41b1ffd8-f28e-4786-ab96-9950f0a78031
    neil_a_wilson
     

13 Sep, 2006

1 commit

12 Sep, 2006

2 commits