org.forgerock / org.forgerock.opendj

25 Apr, 2007

1 commit

24 Apr, 2007

7 commits

  • 01792e94   Make several significant changes to the OpenDS code base, including: ... Browse Code » 
    - Narrow down the set of packages that external developers will need to access
  in order to write a plugin or other type of extension.  Hopefully, for most
  things developers will only need to interact with the following packages (and
  their sub-packages):
  * org.opends.server.admin
  * org.opends.server.api
  * org.opends.server.config
  * org.opends.server.protocols.internal
  * org.opends.server.types
  * org.opends.server.util

- As part of the attempted narrowing of packages that external developers need
  to access, I have moved the org.opends.server.core.Operation and
  org.opends.server.protocols.ldap.LDAPException classes to the
  org.opends.server.types package.  I have also created
  org.opends.server.types.RawAttribute to wrap the
  org.opends.server.protocols.ldap.LDAPAttribute class, and
  org.opends.server.types.RawModification to wrap the
  org.opends.server.protocols.ldap.LDAPModification class.

- I have updated the internal operations API to add a few new convenience
  methods when performing internal operations.

- I have updated all of our message strings so that none of them end in periods
  (except those that end with an ellipsis).  This will help us avoid the
  problem in which we see multiple periods due to embedding one message in
  another.

- I have moved a message file from a synchronizaiton package to the messages
  package and resolved conflicts with existing message IDs.

- I have updated a number of cases in which
  StaticUtils.stackTraceToSingleLineString() was used in client-facing code to
  replace those calls with StaticUtils.getExceptionMessage() instead.  This
  should provide a more user-friendly message that will hopefully not reduce
  our ability to debug problems that may arise.

- I have cleaned up some of the code in the org.opends.server.api package so
  that all of the classes use consistent formatting, and to fix a couple of
  potential Javadoc problems.

- I have moved the build-tools/src directory to src/build-tools to be more
  consistent with other components of the server.

- I have updated the build script so that the xslt task will no longer dump
  lots of output to the terminal when generating code.  I have also gotten rid
  of warnings about run.classpath not being set properly.


git-svn-id: https://svn.forgerock.org/opendj/trunk@1695 41b1ffd8-f28e-4786-ab96-9950f0a78031
    neil_a_wilson
     
  • 3e371b9a   fixed problems related to Windows ... Browse Code » 
    git-svn-id: https://svn.forgerock.org/opendj/trunk@1694 41b1ffd8-f28e-4786-ab96-9950f0a78031
    kenneth_suter
     
  • 6a11bd06   fixed problems related to running the upgrader in Windows ... Browse Code » 
    git-svn-id: https://svn.forgerock.org/opendj/trunk@1693 41b1ffd8-f28e-4786-ab96-9950f0a78031
    kenneth_suter
     
  • e8910d96   Fix for issue 1448 (closing the status panel causes I/O Error in opends) ... Browse Code » 
    The message has been improved on the server side, but however the code of statuspanel has been modified to explicitly call the method close of the different DirContext objects when they are no longer used.


git-svn-id: https://svn.forgerock.org/opendj/trunk@1692 41b1ffd8-f28e-4786-ab96-9950f0a78031
    jvergara
     
  • a11f04c9   Avoid a security hole caused because CertificateManager class was calling Runtim… ... Browse Code » 
    …e.exec and providing some passwords in clear.  The modifications in the code use the OuputStream of the process that is generated to pass the password.  The resulting code depends has been tested using JDK 1.5 and 1.6 on Solaris sparc, Windows XP and Linux 2.4.7.


git-svn-id: https://svn.forgerock.org/opendj/trunk@1691 41b1ffd8-f28e-4786-ab96-9950f0a78031
    jvergara
     
  • e277c33e   Fix for [Issue 1401] revoke support for '/' as option prefix ... Browse Code » 
    git-svn-id: https://svn.forgerock.org/opendj/trunk@1690 41b1ffd8-f28e-4786-ab96-9950f0a78031
    lutoff
     
  • 568b5065   This change (no associated issue no.) addresses some counter-intuitive behavior … ... Browse Code » 
    …discovered when specifying some duration based properties:

   * duration and size units had to be specified in default behaviors

   * upper/lower limit had to be specified without a unit and with
     values in the property's base unit (bytes for size properties)

This change enables us to specify duration and size property constraints and defaults with or without units (when no unit is specified we default to the property's base unit).

The Duration{Unit|PropertyDefinition} APIs have also been re-aligned with the Size{Unit|PropertyDefinition} APIs where possible and the unit tests updated (incl. replacing many bad uses of the assert keyword with the assertEquals TestNG method).

git-svn-id: https://svn.forgerock.org/opendj/trunk@1689 41b1ffd8-f28e-4786-ab96-9950f0a78031
    matthew_swift
     

23 Apr, 2007

13 commits

20 Apr, 2007

7 commits

19 Apr, 2007

11 commits

  • 5e68cdd7   Fix a bug in add/delete listener registration for instantiable ... Browse Code » 
    (one-to-many) relations. Listener registration would fail if
the entry associated with the relation did not exist (this is
the case when the parent managed object has only just been
created). The solution is to wait for the "relation" entry
to be created and, when it is added, automatically register
the add/delete listener then. This automatic registration is
managed by a "delayed" config add listener which is registered
against the parent managed object.


git-svn-id: https://svn.forgerock.org/opendj/trunk@1668 41b1ffd8-f28e-4786-ab96-9950f0a78031
    matthew_swift
     
  • 41dd7c23   Added runtime output to build.xml that hints at how to turn off the debug weavin… ... Browse Code » 
    …g since it can take a while.

git-svn-id: https://svn.forgerock.org/opendj/trunk@1667 41b1ffd8-f28e-4786-ab96-9950f0a78031
    davidely
     
  • 1b588fd1   Fix a Java 5 build break due to the use of the java.awt.Window.setIconImage ... Browse Code » 
    method that wasn't introduced until Java 6.


git-svn-id: https://svn.forgerock.org/opendj/trunk@1666 41b1ffd8-f28e-4786-ab96-9950f0a78031
    neil_a_wilson
     
  • cc69665f   The following changes are targetted to extend the Graphical Setup and provide th… ... Browse Code » 
    …e possibility of configuring SSL and Start TLS.

In the particular case where the user provides a keystore with multiple certificates, the user is prompted to choose one of the certificates.

The committed changes include Neil's wording proposal and fix both the bug he found using PKCS#11 and the layout problem.

When the user chooses to enable SSL or StartTLS, the code does the following:

* In the particular case of the self-signed certificate a random password is generated and a JKS keystore is created under <server_root>/config/keystore.

* In all cases where  the password to access the keystore is stored in clear under <server_root>/config/keystore.pin.

* In all cases a JKS Trust Store containing the server certificate is created under <server_root>/config/truststore.  Please tell whether using a Blind Trust Manager is a better alternative.

Known Issues and Limitations
============================

The code in CertificateManager must be updated to avoid calling keytool with the password in clear.

The setup will not work if the keystore's password and the certificate key password are different.



git-svn-id: https://svn.forgerock.org/opendj/trunk@1665 41b1ffd8-f28e-4786-ab96-9950f0a78031
    jvergara
     
  • 1991428a   The windows service must be enabled before the server is started in the setup (t… ... Browse Code » 
    …his is already done for the off
line graphical installer).


git-svn-id: https://svn.forgerock.org/opendj/trunk@1664 41b1ffd8-f28e-4786-ab96-9950f0a78031
    jvergara
     
  • 18a0926f   Remove unused object. ... Browse Code » 
    git-svn-id: https://svn.forgerock.org/opendj/trunk@1663 41b1ffd8-f28e-4786-ab96-9950f0a78031
    lutoff
     
  • 3fe79395   Initialize the DefaultAccessControlProvider if the Access Control is disabled. ... Browse Code » 
    git-svn-id: https://svn.forgerock.org/opendj/trunk@1662 41b1ffd8-f28e-4786-ab96-9950f0a78031
    lutoff
     
  • 368f653a   Fix 1525 (Cannot disable access control handler) ... Browse Code » 
    With Access control enabled (Dsee compat)

dn: cn=Access Control Handler,cn=config
objectClass: top
objectClass: ds-cfg-access-control-handler
objectClass: ds-cfg-dseecompat-access-control-handler
ds-cfg-global-aci: (targetattr!="userPassword||authPassword")(version 3.0; acl "Anonymous read access"; allow (read,search,compare) userdn="ldap:///anyone";)
ds-cfg-global-aci: (targetattr="*")(version 3.0; acl "Self entry modification"; allow (write) userdn="ldap:///self";)
cn: Access Control Handler
ds-cfg-acl-handler-class: org.opends.server.authorization.dseecompat.AciProvider
ds-cfg-acl-handler-enabled: true

./bin/start-ds -N
[19/Apr/2007:13:51:44 +0200] category=CORE severity=NOTICE id=458886 msg="OpenDS Directory Server 0.1.0 starting up."
[19/Apr/2007:13:51:48 +0200] category=CONFIG severity=NOTICE id=3605006 msg="Access control has been enabled and will use the org.opends.server.authorization.dseecompat.AciProvider implementation."
[19/Apr/2007:13:51:50 +0200] category=BACKEND severity=NOTICE id=8847402 msg="A database backend containing 0 entries has started."
[19/Apr/2007:13:51:52 +0200] category=CORE severity=NOTICE id=458887 msg="The Directory Server has started successfully."
[19/Apr/2007:13:51:52 +0200] category=CORE severity=NOTICE id=458891 msg="The Directory Server has sent an alert notification generated by class org.opends.server.core.DirectoryServer (alert type org.opends.server.DirectoryServerStarted, alert ID 458887):  The Directory Server has started successfully.."

With Access control disabled

dn: cn=Access Control Handler,cn=config
objectClass: top
objectClass: ds-cfg-access-control-handler
objectClass: ds-cfg-dseecompat-access-control-handler
ds-cfg-global-aci: (targetattr!="userPassword||authPassword")(version 3.0; acl "Anonymous read access"; allow (read,search,compare) userdn="ldap:///anyone";)
ds-cfg-global-aci: (targetattr="*")(version 3.0; acl "Self entry modification"; allow (write) userdn="ldap:///self";)
cn: Access Control Handler
ds-cfg-acl-handler-class: org.opends.server.authorization.dseecompat.AciProvider
ds-cfg-acl-handler-enabled: false

./bin/start-ds -N
[19/Apr/2007:13:54:29 +0200] category=CORE severity=NOTICE id=458886 msg="OpenDS Directory Server 0.1.0 starting up."
[19/Apr/2007:13:54:31 +0200] category=CONFIG severity=SEVERE_WARNING id=3277325 msg="Access control has been disabled."
[19/Apr/2007:13:54:31 +0200] category=BACKEND severity=NOTICE id=8847402 msg="A database backend containing 0 entries has started."
[19/Apr/2007:13:54:32 +0200] category=CORE severity=NOTICE id=458887 msg="The Directory Server has started successfully."
[19/Apr/2007:13:54:32 +0200] category=CORE severity=NOTICE id=458891 msg="The Directory Server has sent an alert notification generated by class org.opends.server.core.DirectoryServer (alert type org.opends.server.DirectoryServerStarted, alert ID 458887):  The Directory Server has started successfully.."



git-svn-id: https://svn.forgerock.org/opendj/trunk@1661 41b1ffd8-f28e-4786-ab96-9950f0a78031
    lutoff
     
  • fb325975   Fix minor bug where required import statements were not being generated for rela… ... Browse Code » 
    …tion definitions when defined in abstract managed object definitions.

git-svn-id: https://svn.forgerock.org/opendj/trunk@1660 41b1ffd8-f28e-4786-ab96-9950f0a78031
    matthew_swift
     
  • 2388d1ec   Fix typo which prevented enumeration value Javadoc from being generated. ... Browse Code » 
    git-svn-id: https://svn.forgerock.org/opendj/trunk@1659 41b1ffd8-f28e-4786-ab96-9950f0a78031
    matthew_swift
     
  • 21b5c006   Fix for issue 1442. ... Browse Code » 
    This change introduces a new style-sheet which generates
en_US property files containing all the description elements
from the XML configuration definitions. In order to expose
these properties the admin framework APIs have been modified
as follows:

   * managed object definitions
         o user friendly name
         o user friendly plural name
         o synopsis
         o description

   * property definitions
         o synopsis
         o description
         o unit description (for integer properties)
         o value descriptions (for enumeration properties)
         o pattern descriptions (for string properties). This is pretty
           much useless at the moment since the string property
           definition class does not support patterns (even though the
           XML schema does): issue 1523
         o alias default behavior description

   * relation definitions
         o synopsis
         o description
         o user friendly name (usually the user friendly name of the
           referenced managed object)
         o user friendly plural name for one-to-many relations (usually
           the user friendly plural name of the referenced managed object)

Since there is currently only weak API support for required admin
actions (issue 1426), the admin action descriptions cannot be exposed
through any API at this stage.

For I18N, translators are expected to take the generated property
files and translate them into localized versions.



git-svn-id: https://svn.forgerock.org/opendj/trunk@1658 41b1ffd8-f28e-4786-ab96-9950f0a78031
    matthew_swift
     

18 Apr, 2007

1 commit