org.forgerock / org.forgerock.openidm

24 Jun, 2014

4 commits

ece47b2e OPENIDM-1960 (CR-3847) ... Browse Code »

Used debugger to diagnose differences in encrypted password storage in JDK6 vs JDK7. Found that in JDK6, the encrpyted password is stored as 
{"$crypto":{"value":{"data":"p2tiUCLFv71KNiEuRJQtyg==","cipher":"AES/CBC/PKCS5Padding","iv":"U0fF/6kKYfjtQQC8/l1c4Q==","key":"openidm-sym-default"},"type":"x-simple-encryption"}}

whist in JDK7 it is stored as 
{"$crypto":{"type":"x-simple-encryption","value":{"data":"p2tiUCLFv71KNiEuRJQtyg==","cipher":"AES/CBC/PKCS5Padding","iv":"U0fF/6kKYfjtQQC8/l1c4Q==","key":"openidm-sym-default"}}}

Because key ordering is not predictable, we cannot use endsWith("\"}}") as part of the test.  Changed to }} as this matches the "{\"$crypto\":{" startsWith test.


git-svn-id: https://svn.forgerock.org/openidm/trunk@3445 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-06-24 15:09:17 +0000

be48b198 Clarify support for managed groups. Reviewed by Laurent over Skype. ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3443 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Lana
2014-06-24 13:37:24 +0000

63ac917f typo ... Browse Code »

git-svn-id: https://svn.forgerock.org/openidm/trunk@3442 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-06-24 06:20:59 +0000

282fab62 OPENIDM-1874 CR-3763 Fix the NOT_READABLE flag being ignored when returning attributes. ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3441 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
jason
2014-06-24 05:43:43 +0000

23 Jun, 2014

5 commits

aa5c64fe [CR-3844][OPENIDM-1958] Added null checks which weren't checked in as part of r3421. ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3440 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
alin
2014-06-23 23:12:06 +0000
ca0e3033 CR-3845 OPENIDM-1872 Update configureconnector to use new command-line options ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3439 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
jim.mitchener
2014-06-23 22:34:15 +0000
a490328c [OPENIDM-1933][CR-3811] Modified SecurityManager to use RepositoryService interf… ... Browse Code »
```
…ace for storing/modifying keystore and keypairs.

git-svn-id: https://svn.forgerock.org/openidm/trunk@3437 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
chad.kienle
2014-06-23 16:33:09 +0000

ca7f8a3d OPENIDM-1966 ... Browse Code »

Validate auth parameters if auth is given.  'auth' is JsonValue(null) if not present, not null.
Reviewed by Laurent via skype.



git-svn-id: https://svn.forgerock.org/openidm/trunk@3436 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-06-23 14:38:24 +0000

13198efb OPENIDM-1910 (CR-3707) ... Browse Code »

Update the "What's New" section of the release notes to cover major new 3.0 functionality


git-svn-id: https://svn.forgerock.org/openidm/trunk@3435 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-06-23 13:14:02 +0000

22 Jun, 2014

1 commit

3b9ba1d8 [OPENIDM-1902]Forgot to include figure in last commit ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3434 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Mike2
2014-06-22 14:37:03 +0000

20 Jun, 2014

5 commits

5d280ebf [OPENIDM-1794][CR-3820] Changed the handling of missing query parameters to alig… ... Browse Code »
```
…n with orientdb impl by throwing an Exception.

git-svn-id: https://svn.forgerock.org/openidm/trunk@3433 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
chad.kienle
2014-06-20 22:50:41 +0000
14a3b866 [OPENIDM-1902] New roles/ auth process, also [OPENIDM-1888] ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3432 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Mike2
2014-06-20 21:15:31 +0000
92e6e57e [OPENIDM-1904] New roles/auth assignment process [also OPENIDM-1888] ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3431 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Mike2
2014-06-20 21:13:45 +0000

60385c5a OPENIDM-1940 (CR-3818) ... Browse Code »

Retool the way the preliminary security context gets passed to the augmentation script
and how the updated context from the script gets repersisted in MessageInfo's context map.
Replaces implementation from CR-3752.



git-svn-id: https://svn.forgerock.org/openidm/trunk@3430 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-06-20 15:34:51 +0000

3fb68f5c Clarify that patch is not supported on the /config endpoint ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3429 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Lana
2014-06-20 10:48:12 +0000

19 Jun, 2014

5 commits

7adce97f [OPENIDM-1818] Incorrect description of exception structure ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3426 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Mike2
2014-06-19 15:30:43 +0000

7635e61b OPENIDM-1856 (CR-3783) ... Browse Code »

Log audit activity of managed object on successful update even if synchronization fails.


git-svn-id: https://svn.forgerock.org/openidm/trunk@3425 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-06-19 14:45:35 +0000

6d1afe6a CR-3784 - make username/password required if auth : basic is specified ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3424 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
brmiller
2014-06-19 14:38:50 +0000
7f946897 searchable attribute for taskscanner missed from previous commit ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3423 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
omebold
2014-06-19 08:57:14 +0000
6c387a90 [OPENIDM-1904] New Roles/Auth process [OPENIDM-1888] updated auth requirements b… ... Browse Code »
```
…ased on changes in OPENIDM-1708

git-svn-id: https://svn.forgerock.org/openidm/trunk@3422 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Mike2
2014-06-19 05:36:34 +0000

18 Jun, 2014

17 commits

6144d7a8 [CR-3764][OPENIDM-1943] Fixed how the ojbectclass __ALL__ is handled in a liveSy… ... Browse Code »

…nc call. Renamed method to describe action being done committed in r3385 and updated the license to reflect the year.

git-svn-id: https://svn.forgerock.org/openidm/trunk@3421 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-06-18 22:34:55 +0000

65c47aca Clarifications to ICF/IDM arch description - reviewed by Gael & Lada over Skype. ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3420 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Lana
2014-06-18 20:54:54 +0000
a3846433 Doc fix for CR-3760 (Minor usecase sample updates) ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3419 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Lana
2014-06-18 20:50:30 +0000
760eb6c7 OPENIDM-1873 CR-3773 Audit log recon summary to show completed recon ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3418 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
andi
2014-06-18 17:52:09 +0000
62331826 CR-3785 - OPENIDM-1618 - openidm-admin password stored in cleartext ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3417 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
jake.feasel
2014-06-18 17:44:14 +0000
e751d758 [OPENIDM-1844] CR-3801 change '_var-' prefix to 'var-' of filtered-query of workflow API ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3416 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
omebold
2014-06-18 14:21:00 +0000
6c580abf [IDME-99] CR-3739 port db config updates and sunset taskscanner attribute fix for mysql ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3415 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
omebold
2014-06-18 14:09:53 +0000
6cda87fb CR-3723 (List of compatibility issues for upgrade) ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3414 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Lana
2014-06-18 13:59:11 +0000

7a5fbf54 Fix for CR-3801 ... Browse Code »

(_var- prefix changes to var-)

git-svn-id: https://svn.forgerock.org/openidm/trunk@3413 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-06-18 13:15:51 +0000

92cf86ea Clarify DJ setup and why we assume port 1389 in the samples ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3412 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Lana
2014-06-18 12:30:09 +0000
fab4042f cleanup ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3411 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Lana
2014-06-18 10:11:11 +0000

fb8c08a6 typo ... Browse Code »

git-svn-id: https://svn.forgerock.org/openidm/trunk@3410 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-06-18 10:08:36 +0000

17e6c3f3 OPENIDM-1955 (Elaborate on how external resources monitoring should be done (hea… ... Browse Code »
```
…lth service Vs _action=test)
Reviewed by Laurent over Skype

git-svn-id: https://svn.forgerock.org/openidm/trunk@3409 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Lana
2014-06-18 09:47:45 +0000
c6c82582 no content type needed on delete ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3408 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
laurent.bristiel
2014-06-18 08:52:05 +0000
38a0b7d0 Feedback from Jake (related to upgrade section but additional information required in this section) ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3407 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Lana
2014-06-18 08:50:58 +0000

79fab522 typo ... Browse Code »

git-svn-id: https://svn.forgerock.org/openidm/trunk@3406 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-06-18 08:38:18 +0000

11ad8792 OPENIDM-1866 (Delete of workflow definitions and instances via REST should retur… ... Browse Code »
```
…n the deleted object)

git-svn-id: https://svn.forgerock.org/openidm/trunk@3405 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
Lana
2014-06-18 08:36:41 +0000

17 Jun, 2014

3 commits

46aa4c62 OPENIDM-1953 - ... Browse Code »

Disabling MANAGED_USER auth module for several samples, in favor of PASSTHROUGH to system/ldap/account

Just toggled a boolean config value; no review necessary. Rationale for change:

Previously, we attempted to authenticate using MANAGED_USER first, followed by a few others and then 
finally PASSTHROUGH. The reason it was first created it this way was so that if there was a fully-
populated managed/user entry, it would not need to query the remote system. This works fine if you 
are syncing passwords between managed/user and the remote backend, but as mentioned in OPENIDM-1953, 
that isn't always the case. To compound this problem, there is also the new function around role 
calculation; this is per-auth module, and so if you want to calculate roles for a given user you would 
need to do it for both MANAGED_USER and PASSTHROUGH, if they were both enabled. This redundancy is 
annoying and a likely source of confusion. So, this change is to just disable the MANAGED_USER auth 
module, and always use the PASSTHROUGH config.

git-svn-id: https://svn.forgerock.org/openidm/trunk@3404 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-06-17 18:52:48 +0000

790ab1ca Removing unimplemented endpoint configuration. ... Browse Code »
```
git-svn-id: https://svn.forgerock.org/openidm/trunk@3403 d98387aa-ee2c-4292-a9e6-504d2a719fd3
```
jake.feasel
2014-06-17 18:40:34 +0000

13c7c2e0 QA review comments on Install Guide ... Browse Code »

CR-3766 (First draft of an upgrade chapter for OpenIDM 3.0)

git-svn-id: https://svn.forgerock.org/openidm/trunk@3402 d98387aa-ee2c-4292-a9e6-504d2a719fd3

2014-06-17 17:40:31 +0000