Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-3666

Provide Elytron alternative to RoleMappingLoginModule

    XMLWordPrintable

Details

    • Feature Request
    • Resolution: Done
    • Major
    • 6.0.0.Alpha5
    • 4.0.0.Final
    • Security
    • None

    Description

      In picketbox there is RoleMappingLoginModule [1], which takes role as returned from authorization process and maps to different role. I thought something similar should be configurable with some of Elytron role-mappers. But looking into model/code, it is not obvious to me which of them can be used. I know custom role mapper can be still used, but I wonder if we really do not provide this common funcionality out of the box with Elytron.

      Another workaround is to use direct roles from realm (e.g. LDAP ) in target (e.g. web.xml). But seems users tend to map IDM Roles to applicaiton roles.

      [1] https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.1/html-single/login_module_reference/#rolemapping_login_module

      Attachments

        Issue Links

          is cloned by

          Feature Request - Feature requests from customers and/or users ELY-1591 Provide Elytron alternative to RoleMappingLoginModule

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-14693 [GSS] (7.2.z) Provide Elytron alternative to RoleMappingLoginModule

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              mmazanek Martin Mazánek (Inactive)
              mchoma@redhat.com Martin Choma
              Votes:
              0 Vote for this issue
              Watchers:
              9 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: