Giter Site home page Giter Site logo

wildfly-security / elytron-web Goto Github PK

View Code? Open in Web Editor NEW
5.0 9.0 50.0 668 KB

Integration project for integrating Elytron based HTTP authentication with web containers and clients (Initially just Undertow server)

License: Apache License 2.0

Java 100.00%
hacktoberfest

elytron-web's Introduction

Elytron Web

Integration project for integrating Elytron based HTTP authentication with web containers and clients (Initially just Undertow server)

An "elytron" (ĕl´·ĭ·trŏn, plural "elytra") is the hard, protective casing over a wing of certain flying insects (e.g. beetles).

Building From Source

$ git clone [email protected]:wildfly-security/elytron-web.git

Setup the JBoss Maven Repository

To use dependencies from JBoss.org, you need to add the JBoss Maven Repositories to your Maven settings.xml. For details see http://community.jboss.org/wiki/MavenGettingStarted-Users

Build with Maven

The command below builds the project and runs the embedded suite.

$ mvn clean install

Issue Tracking

Bugs and features are tracked within the Elytron Jira project at https://issues.redhat.com/projects/ELYWEB

Contributions

All new features and enhancements should be submitted to 1.x branch only.

Our contribution guide will guide you through the steps for getting started on the Elytron Web project and will go through how to format and submit your first PR.

For more details, check out our getting started guide for developers.

elytron-web's People

Contributors

ashley-abdelsayed98 avatar ashpan avatar cam-rod avatar darranl avatar fjuma avatar ivassile avatar kwart avatar mchoma avatar neha-b2001 avatar nekdozjam avatar nimisha-yadav avatar pedro-hos avatar pedroigor avatar pferraro avatar prarthonapaul avatar ropalka avatar skyllarr avatar spyrkob avatar stuartwdouglas avatar

Stargazers

 avatar  avatar  avatar  avatar  avatar

Watchers

 avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar  avatar

elytron-web's Issues

Undertow Deprecated API is used

I wonder if it is possible to avoid use of Undertow API marked as deprecated.

If I try to build
[mchoma@localhost elytron-web]$ mvn test

I get:

  • [WARNING] /elytron-web/undertow/src/main/java/org/wildfly/elytron/web/undertow/server/SecurityContextImpl.java:[101,28] getIdentityManager() in io.undertow.security.api.SecurityContext has been deprecated
  • [WARNING] /elytron-web/undertow/src/main/java/org/wildfly/elytron/web/undertow/server/SecurityContextImpl.java:[93,42] getAuthenticationMechanisms() in io.undertow.security.api.SecurityContext has been deprecated
  • [WARNING] /elytron-web/undertow/src/main/java/org/wildfly/elytron/web/undertow/server/SecurityContextImpl.java:[85,17] addAuthenticationMechanism(io.undertow.security.api.AuthenticationMechanism) in io.undertow.security.api.SecurityContext has been deprecated
  • [WARNING] /elytron-web/undertow/src/main/java/org/wildfly/elytron/web/undertow/server/SecurityContextImpl.java:[67,21] setResponseCode(int) in io.undertow.server.HttpServerExchange has been deprecated
  • [WARNING] /elytron-web/undertow/src/test/java/org/wildfly/elytron/web/undertow/server/DefaultServer.java:[141,32] ENABLE_CONNECTOR_STATISTICS in io.undertow.UndertowOptions has been deprecated

TS: WARN ELY06008: Failed to logout participant

Running testsuite
mvn clean test -Dtest=FormAuthenticationWithClusteredSSOTest -Dmaven.test.redirectTestOutputToFile=false

There are 2 WARN log message at the end of log. However that does not cause tests failure.

09:50:37,997 WARN [org.wildfly.security] (XNIO-19 task-2) ELY06008: Failed to logout participant [http://localhost:7778/7778]: java.net.ConnectException: Connection refused

@pferraro ^^

ClientCert Support

Add a test for ClientCert - also any API/SPI adjustments required to achieve it.

We need to cover two modes:
-Authentication during SSL negotiation
-Authentication in the mechanism only.

TS: ELY06012: Invalid logout message received for local session

During testsuite run
mvn clean test -Dmaven.test.redirectTestOutputToFile=false

there occures a lot of error messages:
ELY06013: Failed to invalidate local session: java.lang.IllegalStateException: ELY06012: Invalid logout message received for local session [MGgAaDPABGTDlU343a1FE8ophkLtEB8r7Gz16bPI]

@pferraro ^^

TS: Java 9, java.lang.NoClassDefFoundError: Could not initialize class org.jboss.marshalling.reflect.SerializableClass

Running TS with java 9 there is error:
06:28:32,389 SEVERE [org.jgroups.blocks.RequestCorrelator] (remote-thread-c7f0b65b-9422-416a-be64-2f52f27391fb-p2-t1) JGRP000178: failed marshalling rsp (SuccessfulResponse{responseValue=StatusResponse{cacheJoinInfo=null, cacheTopology=CacheTopology{id=2, rebalanceId=2, currentCH=ReplicatedConsistentHash{ns = 256, owners = (1)[c7f0b65b-9422-416a-be64-2f52f27391fb-58994: 256]}, pendingCH=ReplicatedConsistentHash{ns = 256, owners = (2)[c7f0b65b-9422-416a-be64-2f52f27391fb-58994: 134, d80ec1f7-7b9f-4fcf-bf60-66e80e6f3cce-52682: 122]}, unionCH=null, actualMembers=[c7f0b65b-9422-416a-be64-2f52f27391fb-58994, d80ec1f7-7b9f-4fcf-bf60-66e80e6f3cce-52682]}, stableTopology=CacheTopology{id=1, rebalanceId=1, currentCH=ReplicatedConsistentHash{ns = 256, owners = (1)[c7f0b65b-9422-416a-be64-2f52f27391fb-58994: 256]}, pendingCH=null, unionCH=null, actualMembers=[c7f0b65b-9422-416a-be64-2f52f27391fb-58994]}}} ): java.lang.NoClassDefFoundError: Could not initialize class org.jboss.marshalling.reflect.SerializableClass

ClientCertAuthenticationTest error on IBM java

java.security.NoSuchAlgorithmException: SunX509 TrustManagerFactory not available

It is probably enough to replace static algorithm specification with *ManagerFactory.getDefaultAlgorithm(). Will send PR in minute.

OutOfMemoryError in TS

@pedroigor , commit [1] introduced occurence of OutOfMemoryError. Could you have a look, what could be a problem, please? For example On IBM java ClientCertAuthenticationTest could not be run until -Xmx1024 is configured in surefire plugin.

Is just setting enough of memory (let say -Xmx1024) proper solution here? And high memory consumption is just caused by 2 Undertow server started inside TS.

Or could be code somehow optimized? Could you review if committed changes are all right?

[1] 21e2241

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.