svn commit: r1724714 - in /portals/jetspeed-2/portal/trunk: jetspeed-api/src/main/java/org/apache/jetspeed/administration/PortalConfigurationConstants.java jetspeed-portal-resources/src/main/resources/conf/jetspeed/jetspeed.properties

Thu, 14 Jan 2016 17:11:37 -0800 

Author: taylor
Date: Fri Jan 15 01:11:21 2016
New Revision: 1724714

URL: http://svn.apache.org/viewvc?rev=1724714&view=rev
Log:
fixing backward compatibility issue with migrating from version 2.1.3, which 
allowed more lenient delegated security assignments. Note this feature should 
be turned off by default

Modified:
    
portals/jetspeed-2/portal/trunk/jetspeed-api/src/main/java/org/apache/jetspeed/administration/PortalConfigurationConstants.java
    
portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/jetspeed/jetspeed.properties

Modified: 
portals/jetspeed-2/portal/trunk/jetspeed-api/src/main/java/org/apache/jetspeed/administration/PortalConfigurationConstants.java
URL: 
http://svn.apache.org/viewvc/portals/jetspeed-2/portal/trunk/jetspeed-api/src/main/java/org/apache/jetspeed/administration/PortalConfigurationConstants.java?rev=1724714&r1=1724713&r2=1724714&view=diff
==============================================================================
--- 
portals/jetspeed-2/portal/trunk/jetspeed-api/src/main/java/org/apache/jetspeed/administration/PortalConfigurationConstants.java
 (original)
+++ 
portals/jetspeed-2/portal/trunk/jetspeed-api/src/main/java/org/apache/jetspeed/administration/PortalConfigurationConstants.java
 Fri Jan 15 01:11:21 2016
@@ -72,7 +72,8 @@ public interface PortalConfigurationCons
     static final String ROLES_DEFAULT_MANAGER = "default.manager.role";
     static final String ROLES_DEFAULT_USER = "default.user.role";
     static final String ROLES_DEFAULT_GUEST = "default.guest.role";
-    
+    static final String ALLOW_DELEGATE_ASSIGN_ROLES = 
"allow.delegate.assign.roles";
+
     /** Jetui */
     static final String JETUI_CUSTOMIZATION_METHOD = 
"jetui.customization.method";
     static final String JETUI_CUSTOMIZATION_SERVER = "server";

Modified: 
portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/jetspeed/jetspeed.properties
URL: 
http://svn.apache.org/viewvc/portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/jetspeed/jetspeed.properties?rev=1724714&r1=1724713&r2=1724714&view=diff
==============================================================================
--- 
portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/jetspeed/jetspeed.properties
 (original)
+++ 
portals/jetspeed-2/portal/trunk/jetspeed-portal-resources/src/main/resources/conf/jetspeed/jetspeed.properties
 Fri Jan 15 01:11:21 2016
@@ -103,8 +103,8 @@ supported.windowstate.additional.default
 # -------------------------------------------------------------------
 #  Portlet Container Runtime Options 
 # -------------------------------------------------------------------
-container.supported.runtimeOption=escapeXML    
-container.supported.runtimeOption=javax.portlet.servletDefaultSessionScope    
+container.supported.runtimeOption=escapeXML
+container.supported.runtimeOption=javax.portlet.servletDefaultSessionScope
     
 # -------------------------------------------------------------------
 #  Security Information
@@ -118,6 +118,9 @@ default.admin.role=admin
 default.manager.role=manager
 default.user.role=user
 default.guest.role=guest
+# some systems require delegated admins to assign roles and groups without 
owning the roles or groups
+# this setting should be used carefully
+allow.delegate.assign.roles=false
 
 # -------------------------------------------------------------------
 #  L O G 4 J - L O G G I N G



---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-dev-unsubscr...@portals.apache.org
For additional commands, e-mail: jetspeed-dev-h...@portals.apache.org

Reply via email to