Uploaded image for project: 'Dev - Nexus Repo'
  1. Dev - Nexus Repo
  2. NEXUS-272

Jsecurity Integration

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 1.0-beta
    • Component/s: None
    • Labels:
      None

      Description

      We will use jsecurity as the framework for the security checks. A new realm will handle authentication and authorization. The default mutable realm will need to hook to the existing modello models that store user / roles / permissions to make the checks.

      All auth/authz checks must go through jsecurity so additional realms may be created for external integrations (opensso, ldap, etc)

      Integration of Repository Targets (nexus-98) will require a new rest api to be defined to relate to the contents of the target. (/service/local/[target id]/contents for example). The security check on the contents of a repository will work roughly like this:
      1. Map the incoming URI to one or more targets. If no target is found, skip to step 3.
      2. For each target, issue a isPermitted check to jsecurity on the /target id/ contents uri. Stop as soon as isPermitted returns true.
      3. Issue isPermitted check on the full inbound uri.

        Attachments

          Activity

            People

            Assignee:
            cstamas Tamás Cservenák
            Reporter:
            brianf Brian Fox
            Last Updated By:
            Peter Lynch Peter Lynch
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:
              Date of First Response:

                Time Tracking

                Estimated:
                Original Estimate - 25.75h Original Estimate - 25.75h
                25.75h
                Remaining:
                Time Spent - 27h 28m Remaining Estimate - 2h 7m
                2h 7m
                Logged:
                Time Spent - 27h 28m Remaining Estimate - 2h 7m
                27h 28m

                  tigCommentSecurity.panel-title