Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-11951

[GSS](7.1.z) Elements defined in 'jboss-ejb-security_1_1.xsd' must be optional

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Major
    • 7.1.2.CR1, 7.1.2.GA
    • 7.1.0.ER1
    • EJB
    • None
    • Hide

      Validate the following 'jboss-ejb3.xml' file:

      <?xml version="1.0" encoding="UTF-8"?>
<jboss:ejb-jar xmlns:jboss="http://www.jboss.com/xml/ns/javaee" 
               xmlns:jee="http://java.sun.com/xml/ns/javaee"
               xmlns:s="urn:security:1.1"
               xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
               xsi:schemaLocation="http://www.jboss.com/xml/ns/javaee http://www.jboss.org/j2ee/schema/jboss-ejb3-2_0.xsd
                                   http://java.sun.com/xml/ns/javaee http://www.jboss.org/j2ee/schema/jboss-ejb3-spec-2_0.xsd
                                   urn:security:1.1 http://www.jboss.org/schema/jbossas/jboss-ejb-security_1_1.xsd"
               version="3.1" impl-version="2.0">
    <jee:assembly-descriptor>
        <s:security>
            <jee:ejb-name>*</jee:ejb-name>
            <s:security-domain>SomeSecurityDomain</s:security-domain>
            <!-- 
            <s:run-as-principal>SomeUser</s:run-as-principal>
            -->
            <s:missing-method-permissions-deny-access>true</s:missing-method-permissions-deny-access>
        </s:security>
    </jee:assembly-descriptor>
</jboss:ejb-jar>
      Show
      Validate the following 'jboss-ejb3.xml' file: <?xml version="1.0" encoding="UTF-8"?> <jboss:ejb-jar xmlns:jboss="http://www.jboss.com/xml/ns/javaee" xmlns:jee="http://java.sun.com/xml/ns/javaee" xmlns:s="urn:security:1.1" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.jboss.com/xml/ns/javaee http://www.jboss.org/j2ee/schema/jboss-ejb3-2_0.xsd http://java.sun.com/xml/ns/javaee http://www.jboss.org/j2ee/schema/jboss-ejb3-spec-2_0.xsd urn:security:1.1 http://www.jboss.org/schema/jbossas/jboss-ejb-security_1_1.xsd" version="3.1" impl-version="2.0"> <jee:assembly-descriptor> <s:security> <jee:ejb-name>*</jee:ejb-name> <s:security-domain>SomeSecurityDomain</s:security-domain> <!-- <s:run-as-principal>SomeUser</s:run-as-principal> --> <s:missing-method-permissions-deny-access>true</s:missing-method-permissions-deny-access> </s:security> </jee:assembly-descriptor> </jboss:ejb-jar>

    Description

      Wildfly does not validate the 'jboss-ejb3.xml' file during startup, but when trying do validate a 'jboss-ejb3.xml' file externally the following elements are mandatory, even though they aren't:

      • security-domain
      • run-as-principal
      • missing-method-permissions-deny-access

      The jboss-ejb-security_1_1.xsd should be changed to have these elements optional.

      Like:

        ...
  <xs:element name="security-domain" type="xs:string" minOccurs="0"/>
  <xs:element name="run-as-principal" type="xs:string" minOccurs="0"/>
  <xs:element name="missing-method-permissions-deny-access" type="xs:boolean" minOccurs="0">
  ...

      Attachments

        Issue Links

          clones

          Bug - A problem that impairs or prevents the functions of the product. WFLY-9047 Elements defined in 'jboss-ejb-security_1_1.xsd' must be optional

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          is cloned by

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-13235 [GSS](7.0.z) Elements defined in 'jboss-ejb-security_1_1.xsd' must be optional

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              istudens@redhat.com Ivo Studensky
              rhn-support-jbaesner Joerg Baesner
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: