Stream

Edward Solis

Discussion  - 
 
Hi,


I been tried to implement an example with WS-Trust and JAX-WS Web Services, I found an example from 2013 [http://servicesblog.redhat.com/2013/04/02/enforcing-authentication-and-authorization-on-a-jax-ws-web-service-using-picketlink/], but I do not have the right dependencies.

Anyone have an example that I could use??

Thanks
by Kenny Peeples (Red Hat) Introduction The following article describes how to enforce authentication with SAML and authorization with XACML on a JAX-WS Web Service on JBoss Enterprise Application …
1
Add a comment...

Boleslaw Dawidowicz
moderator

Discussion  - 
 
 
Together with new PicketLink 2.7.0.Final release, we would like to announce that PicketLink and Keycloak projects will be merging their efforts. Code base of both will get unified and new features will be developed in a single place.

As part of this merge all key features of PicketLink will get included into Keycloak. Combining strengths of both projects and providing their communities a single polished and unified security solution. Joining both efforts should enable faster progress on new features which will be beneficial for all users and developers leveraging those solutions. [...]


Full blog post here:
http://blog.keycloak.org/2015/03/picketlink-and-keycloak-projects-are.html

DZone link: http://www.dzone.com/links/picketlink_and_keycloak_projects_are_merging.html

Additional FAQ: http://picketlink.org/keycloak-merge-faq/
Together with new PicketLink 2.7.0.Final release, we would like to announce that PicketLink and Keycloak projects will be merging their efforts. Code base of both will get unified and new features will be developed in a singl...
8
2
PAA KOJO KONDUAH AMOS's profile photomike cirioli's profile photo
2 comments
 
Great News!
Add a comment...

Radu Toev

Discussion  - 
 
Do you think it makes sense to add the PATCH method in the HttpMethod enum so as to support partial updates with this method if the http security is enabled? 
1
Radu Toev's profile photoPedro Igor's profile photo
5 comments
 
Yeah ... If you want to send a PR with a patch to HttpMethod or contribute with a quickstart about partial request. It is your call ...
Add a comment...

Pedro Igor
moderator

Discussion  - 
This article will explore how to create a JSF login backed by standards-compliant CDI, and the PicketLink security framework (an open-source project from JBoss). Content for this article was taken from the very comprehensive, and quite understandable quick-start from the PicketLink project itself.
2
3
Add a comment...

Pedro Igor
moderator

Discussion  - 
 
[Announcement] PicketLink v2.7.0.CR2 has been released. Please see http://picketlink.org/news/2014/11/07/Release-2/ … for more information.
The PicketLink Query API is now more flexible and supports different type of conditions when querying your identity types. The documentation was updated to reflect these changes. Some methods were marked as deprecated, but changes do not impact backward compatibility.
6
5
PAA KOJO KONDUAH AMOS's profile photomike cirioli's profile photo
2 comments
 
Nice!
Add a comment...

Pedro Igor
moderator

Discussion  - 
 
In this presentation we will take a look at PicketLink, a security framework for Java EE and learn how its identity management, authentication and authorization features can be used to address the security requirements for all aspects of application development.
4
3
Add a comment...

Pedro Igor
moderator

Discussion  - 
 
[Announcement] PicketLink v2.7.0.Beta2 has been released.

Please see http://picketlink.org/news/2014/09/15/Release-2/
for more information.
PicketLink Forge Addon. Better support for Http and Web Security. Configuration improvements to make it even more simple. Specially when working with the JPA Identity Store. Added a new identity store to better handle tokens. Useful to consume tokens and extract identity information from tokens ...
6
3
Add a comment...

Pedro Igor
moderator

Discussion  - 
 
[Announcement] PicketLink v2.7.0.Beta1 has been released.

Please see http://picketlink.org/news/2014/08/25/Release-2/
for more information.
For both SP and IDP Initiated SSO. SAML Service Providers can choose dynamic accounts. WildFly Bindings and Jetty Bindings. IDPFilter for all web applications on any servlet container. JAXRS Endpoint to issue SAML Assertions. PicketLink Subsystem for JBoss EAP 6.3 and WildFly Application Server ...
7
3
Add a comment...

Anil Saldanha
owner

Discussion  - 
 
[Announcement] PicketLink v2.6.0.Final has been released.

Please see http://picketlink.org/news/2014/06/23/Release-2/
for more information.

This release makes use of Apache Deltaspike v1.0.0

Thanks to +Apache Software Foundation 

PicketLink team requests the community to test drive the release and inform in the case of any issues.
3
6
Add a comment...

About this community

PicketLink is an open source project for security.
 
Hello Goodnight.
Can someone help me with this problem?
Good Afternoon I am using picketlink version 2.7.0 with the following settings in the maven dependencies:
1
Add a comment...

Marco Panunzio

Discussion  - 
 
Hello everyone.
I'm trying to implement picketlink's security in my application, but I'm encountering some difficulties with the permission management. In the case, permissionManager.grant method doesn't save anything about the permissions.
Can the problem be that I'm integrating it with a custom identity model?
Can I ask you for assistance?
Thank you in advance for your answers.
1
Pedro Igor's profile photo
 
Hi Marco, if you are using a custom identity model you probably need to map an entity similar to this https://github.com/picketlink/picketlink/blob/v2.7.1.Final/modules/idm/simple-schema/src/main/java/org/picketlink/idm/jpa/model/sample/simple/PermissionTypeEntity.java. Beside that, I would recommend you to start looking at Keycloak as a replacement for Picketlink.
Add a comment...

Pedro Igor
moderator

Discussion  - 
 
[Announcement] PicketLink v2.7.0.Final has been released.

Please see http://picketlink.org/news/2015/02/27/Release-2/
for more information.
6
2
mike cirioli's profile photoAnil Saldanha's profile photo
2 comments
 
Great job, Pedro.
Add a comment...

Werner

Discussion  - 
 
Partition vs. GroupMembership

Hi all, I am currently digging through all the details about the (great!) PicketLink framework. I was wondering for a typical application how would you solve the ownership of entities created by users?

Lets say you have an entity BlogEntry and users of the same company should be able to edit this BlogEntry.

Would you rather use partitions or groups to do this?
4 votes  -  votes visible to Public
Partitions
75%
Groups
0%
See comment :)
25%
1
Pedro Igor's profile photoWerner's profile photo
4 comments
Werner
 
Thanks a lot that was helpful!

So i guess in case of a JPA application I will store an owning group in each article and use that to resolve which articles each user may see and juse group-permissions to define additional rights.

I was really uncertain because creating a new realm is so easy through the PL-api ;-)
Add a comment...

Pedro Igor
moderator

Discussion  - 
 
[Announcement] PicketLink v2.7.0.CR3 has been released. Please see http://picketlink.org/news/2014/12/23/Release-2/ for more information.
1
2
Add a comment...

Jonas Kongslund

Discussion  - 
 
After having read chapter 10 about privileges for application resources it left me with the following question: How can I - in an effective way - fetch a list of applications resources that the user has permission to see? E.g. in order to present a list of clients/projects/bank accounts/foobars in a user interface. The user could for example have permission to only see 1,000 out of 1,000,000.
The Permissions API is a set of extensible authorization features that provide capabilities for determining access privileges for application resources. This chapter describes the ACL (Access Control List) features and the management of persistent resource permissions via the PermissionManager .
1
Pedro Igor's profile photoJonas Kongslund's profile photo
6 comments
 
Thanks!
Add a comment...

Pedro Igor
moderator

Discussion  - 
 
[Announcement] PicketLink v2.7.0.CR1 has been released.

Please see http://picketlink.org/news/2014/10/07/Release-2/
for more information.
Latest News. Pedro Igor Oct 07, 2014 PicketLink 2.7.0.CR1 is out! Pedro Igor Sep 15, 2014 PicketLink 2.7.0.Beta2 is out! Pedro Igor Aug 25, 2014 PicketLink 2.7.0.Beta1 is out! Pedro Igor Aug 13, 2014 JUDCon 2014 Brazil; Anil Saldhana Jun 23, 2014 PicketLink 2.6.0.Final is out!
2
2
Add a comment...

mike cirioli

Discussion  - 
 
Although you are no longer here at Red Hat +Anil Saldhana , I wanted to share the love we are getting for finally releasing our internal Picketlink IdP with full GSSAPI kerberos support! I've never seen such a positive response on memo-list in my life!
6
mike cirioli's profile photoAnil Saldanha's profile photo
4 comments
 
+Mark Little very well said.

Once JBoss, Always JBoss!!!
Add a comment...

Rodrigo Ramalho

Discussion  - 
 
Everyone that searchs for "JBoss SSO" (at google) found references to JBoss SSO project (http://jbosssso.jboss.org/) but not to Picketlink Project. 
JBoss SSO project, seens deprecated and overwrited by Picketlink (I can be wrong), but in anyway I guess that SSO main page should reference picketlink project. And picketlink web page should improve the SEO mechanism to be more easily found.
The benefits of using Single Sign On across your federation of web applications consist of: Helps consolidate silos of identity stores that have cropped up over time with multiple web applications. Improves user account provisioning process dramatically. Provides a better end user experience ...
1
1
Rafael Soares's profile photoBoleslaw Dawidowicz's profile photo
2 comments
 
Good point. Thanks for the valuable feedback. We'll try to improve it soon. 
Add a comment...

Pedro Igor
moderator

Discussion  - 
 
The International JBoss Users and Developer Conference, and premier JBoss developer event “By Developers, For Developers,”
is pleased to announce that the call for papers for JUDCon: 2014 Brazil, which will be held in São Paulo on September 26th,
is now open! Got Something to Say? Say it at JUDCon: 2014 Brazil! Call for papers ends at 5 PM on August 22nd, 2014 São Paulo time,
and selected speakers will be notified by August 29th, so don't delay!
1
Add a comment...

Anil Saldanha
owner

Discussion  - 
 
Congratulations to +Apache Software Foundation for the successful release of v1.0.0 of Apache Deltaspike.  The PicketLink community is going to be a major beneficiary.
5
vidhyadharan D's profile photo
 
when did they released Deltaspike?
Add a comment...