org.forgerock / org.forgerock.openidm

10 Feb, 2015

1 commit

c0b061c1 IDME-340 (CR-5999) Add "static user" auth module to authenticate anonymous user ... Browse Dir »

against module config to avoid repo read for self-registration use-cases.



git-svn-id: https://svn.forgerock.org/openidm/trunk@4822 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2015-02-10 01:46:19 +0000

06 Feb, 2015

1 commit

82b2b953 CR-5946 - OPENIDM-2796 - Removing sample configs which reveal cleartext password… ... Browse Dir »
```
…s in linked datasources

git-svn-id: https://svn.forgerock.org/openidm/trunk@4809 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
jake.feasel
2015-02-06 00:00:55 +0000

28 Jan, 2015

1 commit

44c247ad OPENIDM-2803 typo in user's display name in LDIFF file in samples ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@4759 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
laurent.bristiel
2015-01-28 12:09:18 +0000

29 Aug, 2014

1 commit

0f6719f2 Based on 29 Aug phone number updates at ForgeRock.com ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3840 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Mike2
2014-08-29 22:08:09 +0000

17 Jun, 2014

1 commit

46aa4c62 OPENIDM-1953 - ... Browse Dir »

Disabling MANAGED_USER auth module for several samples, in favor of PASSTHROUGH to system/ldap/account

Just toggled a boolean config value; no review necessary. Rationale for change:

Previously, we attempted to authenticate using MANAGED_USER first, followed by a few others and then 
finally PASSTHROUGH. The reason it was first created it this way was so that if there was a fully-
populated managed/user entry, it would not need to query the remote system. This works fine if you 
are syncing passwords between managed/user and the remote backend, but as mentioned in OPENIDM-1953, 
that isn't always the case. To compound this problem, there is also the new function around role 
calculation; this is per-auth module, and so if you want to calculate roles for a given user you would 
need to do it for both MANAGED_USER and PASSTHROUGH, if they were both enabled. This redundancy is 
annoying and a likely source of confusion. So, this change is to just disable the MANAGED_USER auth 
module, and always use the PASSTHROUGH config.

git-svn-id: https://svn.forgerock.org/openidm/trunk@3404 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-06-17 18:52:48 +0000

02 Jun, 2014

1 commit

c1022e7a CR-3654 - OPENIDM-1896 - Renaming passthroughAuthnPopulateContext.js to populateAsManagedUser.js ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3298 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
jake.feasel
2014-06-02 18:06:00 +0000

30 May, 2014

1 commit

4a0f23c3 OPENIDM-1708 (CR-3633) ... Browse Dir »

Support reauth for any auth module configured in authentication.json.
 * AuthenticationService now handles requests on /authentication, replaciing
   AuthFilter which was not a filter, and did not fully handle reauth.
 * Authenticators are used from both JASPI auth modules and AuthenticationService
   to provide the authentication--either with Http headers in the case of the 
   auth modules, or from the authcid in the HttpContext and the reauth header 
   in the case of reauthentication.
 * AuthenticationService now satisfies the AuthenticationConfig service for 
   the purposes of OSGiAuthFilterBuilder's access to the config to build the 
   JASPI CAF.
 * The duplicative managed/user config at the top of the sample authentication.json 
   files are now removed, thus satisfying OPENIDM-1781.



git-svn-id: https://svn.forgerock.org/openidm/trunk@3282 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-05-30 05:25:15 +0000

27 May, 2014

1 commit

442836e6 OPENIDM-1762 (CR-3586) ... Browse Dir »

Additional decoupling of auth module role calculation and security context 
population from auth module validation code.  Notably:

 * factor out basic auth code to allow PassthroughModule to support both basic auth and X-OpenIDM- header auth.
 * remove IWAPassthroughModule in favor of using auth module configuration to control order of execution
 * separate client cert auth into its own module, supporting an list of "allowedAuthenticationIdPatterns" 
   to compare against the subject DN
 * remove static dependency on OSGIAuthnFilterBuilder for injection of OSGi artifacts - improves testability



git-svn-id: https://svn.forgerock.org/openidm/trunk@3261 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-05-27 15:46:41 +0000

14 May, 2014

1 commit

345196d4 OPENIDM-1735 / OPENIDM-1134 (CR-3503) ... Browse Dir »

Provide additional detail on sync failures from managed object CRUD operations.
Provide example compensation script to compensate for sync failures.



git-svn-id: https://svn.forgerock.org/openidm/trunk@3207 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-05-14 19:36:42 +0000

12 May, 2014

1 commit

61347cf3 CF-2495 - CAF-93/CAF-103 - Session integration with OpenAM via common session module ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3171 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
phillcunnington
2014-05-12 14:13:46 +0000

23 Apr, 2014

1 commit

13b1171a http://sources.forgerock.org/cru/CR-3415 - OPENIDM-1734 - samples 8, 9 and workf… ... Browse Dir »
```
…low working with the UI, plus some overall cleanup



git-svn-id: https://svn.forgerock.org/openidm/trunk@3126 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
jake.feasel
2014-04-23 00:55:26 +0000

18 Apr, 2014

1 commit

e786b9f4 CR-3404 - OPENIDM-1734 - Updates for Sample 6 ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3109 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
jake.feasel
2014-04-18 00:09:11 +0000

03 Apr, 2014

1 commit

1d88ac4a http://sources.forgerock.org/cru/CR-3243 - OpenIDM updates to samples 1 through 4 ... Browse Dir »
```
Doesn't include sample3 updates

git-svn-id: https://svn.forgerock.org/openidm/trunk@3051 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
jake.feasel
2014-04-03 16:55:40 +0000

26 Mar, 2014

1 commit

6a4dd7c7 OPENIDM-1687 (CR-3245) ... Browse Dir »

Update other auth module of 'userId' to 'authenticationId' for consistency.



git-svn-id: https://svn.forgerock.org/openidm/trunk@3022 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-03-26 20:55:24 +0000

19 Mar, 2014

2 commits

d5549b67 OPENIDM-1707 ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@2998 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
huck.elliott
2014-03-19 20:38:06 +0000
d83a4059 CR-3215 - OPENIDM-1683 - Pass-through authentication support for enduser ui ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@2997 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
jake.feasel
2014-03-19 18:16:06 +0000

17 Mar, 2014

2 commits

29cd0f00 [IDME-171][IDME-175][CR-3190] Added managed_role orientdbClass to the default or… ... Browse Dir »

…ientdb repo config, also re-added the managed_group to the samples orientdb repo config because it was accidentally removed with a previous commit.

git-svn-id: https://svn.forgerock.org/openidm/trunk@2983 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-03-17 20:47:41 +0000

bd52b333 Promote CREST development branch to trunk, archive old trunk as 2.1 branch ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@2979 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
brmiller
2014-03-17 16:39:52 +0000

30 Jan, 2014

1 commit

fb3d1ce2 OPENIDM-1613 - Upgrade to OrientDB v1.6.4 and enable plocal storage by default. … ... Browse Dir »

… Replace token used within Index naming scheme to use exclamation instead of pipe in order to avoid issues on Windows.

git-svn-id: https://svn.forgerock.org/openidm/trunk@2786 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-01-30 14:54:25 +0000

14 Nov, 2013

1 commit

76e0b547 CR-2579 (OPENIDM-1095) Invalid LDAP object in Sample2C ... Browse Dir »

RFC 4519 stipulates that a groupOfUniqueNames object must have at least one uniqueMember. 
Our sample provides an LDIF file that breaks this requirement. 
OpenDJ is more relaxed wrt to this specification, so DJ loads the Example.ldif without complaint, but the reporter of this issue notes that other Directory Servers won't load this LDIF file. 
The solution is to create a dummy user in the Example.ldif file, and add it as a uniqueMember of the second group. 
Unfortunately this addition necessitated a slight adjustment to the description of the sample (as readers might wonder why there is this second user that is not used in the sample.)

git-svn-id: https://svn.forgerock.org/openidm/trunk@2632 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2013-11-14 06:43:17 +0000

02 Oct, 2013

1 commit

0bf55e07 [CR-2427] Updated versions of OpenICF and LDAP Connector. ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@2517 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
chad.kienle
2013-10-02 18:54:14 +0000

23 Jul, 2013

1 commit

9ddd294c OPENIDM-1326 (CR-2041) ... Browse Dir »

Fix regression if syncFailureHandler is not defined in config; liveSync failures
  will result in infinite retries as before
Fix bug where handler exception is never logged by provisioner.
Use singleton pattern for handlers without state.
Update all samples to have sane defaults of 5 retries and logged-ignore handler.
Update README.


git-svn-id: https://svn.forgerock.org/openidm/trunk@2321 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2013-07-23 20:29:56 +0000

10 Jul, 2013

1 commit

98b9c2e7 [OPENIDM-1353][OPENIDM-1385][CR-1812][CR-1899] added "security_keys" and "audit_access" tables. ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@2272 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
chad.kienle
2013-07-10 20:58:00 +0000

27 Jun, 2013

1 commit

8181f5bf [OPENIDM-505][CR-1877] Added support for configurable composite indexes with OrientDB ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@2240 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
chad.kienle
2013-06-27 23:06:41 +0000

17 May, 2013

1 commit

0ca8658f [OPENIDM-1321][CR-1701] Changed "parentActionid" column name to "parentActionId"… ... Browse Dir »
```
… in activity audit log.

git-svn-id: https://svn.forgerock.org/openidm/trunk@2159 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
chad.kienle
2013-05-17 16:58:31 +0000

02 May, 2013

1 commit

e250cc8d [OPENIDM-1304][CR-1639] Added support for responses of custom queries to be unfo… ... Browse Dir »

…rmatted, added declarations for audit_recon and audit_activity tables in orientdb config

git-svn-id: https://svn.forgerock.org/openidm/trunk@2129 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2013-05-02 22:50:56 +0000

01 May, 2013

1 commit

4d74bbc0 [OPENIDM-1299][CR-1630] Added repo audit log query by mapping name, reworked CSV… ... Browse Dir »
```
… parsing to fix issues

git-svn-id: https://svn.forgerock.org/openidm/trunk@2123 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
chad.kienle
2013-05-01 21:33:44 +0000

30 Apr, 2013

1 commit

24a2fea9 [OPENIDM-1294][IB-150][CR-1622] Enhanced Recon Audit Log Entry Messages Details/… ... Browse Dir »
```
…Summaries, Added Scriptable Formatter For Exception Details

git-svn-id: https://svn.forgerock.org/openidm/trunk@2120 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
chad.kienle
2013-04-30 16:34:28 +0000

26 Apr, 2013

1 commit

0ac0d3b6 [OPENIDM-1282][CR-1548] Extended the AuditService to support reads and queries o… ... Browse Dir »
```
…n audit log entries. Implemented in both CsvAuditLogger and RepoAuditLogger.

git-svn-id: https://svn.forgerock.org/openidm/trunk@2109 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
chad.kienle
2013-04-26 16:42:07 +0000

04 Apr, 2013

1 commit

0bf7a03d adapt samples: use the 1.1.1.0-SNAPSHOT ldap connector ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@2074 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
omebold
2013-04-04 09:09:54 +0000

21 Mar, 2013

1 commit

114b9a01 [OPENIDM-1259][CR-1453] Updated the orientdb config in the samples directory to … ... Browse Dir »
```
…contain the query and table for cluster states.

git-svn-id: https://svn.forgerock.org/openidm/trunk@2057 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
chad.kienle
2013-03-21 20:25:17 +0000

17 Dec, 2012

1 commit

ea12a493 CR-1128 - Update the OpenICF dependencies to the latest released versions ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@1807 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Laszlo
2012-12-17 17:34:45 +0000

07 Dec, 2012

1 commit

5aea0835 OPENIDM-1010, CR-1053 make workflow definition folder configurable, eg. used in … ... Browse Dir »
```
…samples started by -p option

git-svn-id: https://svn.forgerock.org/openidm/trunk@1732 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
omebold
2012-12-07 20:59:57 +0000

01 Dec, 2012

1 commit

88558c15 OPENIDM-956 / CR-992 - Update the OpenICF connector versions to the latest ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@1682 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Laszlo
2012-12-01 09:01:17 +0000

30 Nov, 2012

1 commit

821c6886 Added index for Groups as requested and needed by sample2c ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@1678 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
matthias
2012-11-30 08:19:06 +0000

28 Nov, 2012

1 commit

3447b738 Remove minimal router.json form samples (i.e. internal-common) since samples sho… ... Browse Dir »
```
…uld work with the standard router file

git-svn-id: https://svn.forgerock.org/openidm/trunk@1660 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
matthias
2012-11-28 17:51:19 +0000

27 Nov, 2012

1 commit

6a57e740 Make sample 9 available for -p and fix path to policy for all samples ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@1649 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
matthias
2012-11-27 12:59:08 +0000

21 Nov, 2012

1 commit

970b18bd Made samples available with the -p option CR-914 ... Browse Dir »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@1621 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
matthias
2012-11-21 01:35:46 +0000

05 Nov, 2012

1 commit

014cce17 OPENIDM-749 / CR-805 - OpenIDM started with new Launcher ... Browse Dir »

Assign directories to different location:
bin => install-location
bundle => install-location
conf => project-location
connectors => install-location
db => work-location
logs => work-location
script => project-location
security => install-location
workflow => install-location


git-svn-id: https://svn.forgerock.org/openidm/trunk@1426 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2012-11-05 15:14:21 +0000