Bug 1018683
| Summary: | One off patch of BZ 1016420 - AbstractInfinispanCacheProvider.getNamespaceForFqn replace inconsistency | ||
|---|---|---|---|
| Product: | [JBoss] JBoss Enterprise Portal Platform 6 | Reporter: | Adam Kovari <akovari> |
| Component: | PicketLink | Assignee: | Gary Hu <ghu> |
| Status: | CLOSED CURRENTRELEASE | QA Contact: | Dominik Pospisil <dpospisi> |
| Severity: | high | Docs Contact: | |
| Priority: | high | ||
| Version: | 6.0.0 | CC: | cobrien, ghu, mposolda, mweiler, nobody, pmensik |
| Target Milestone: | --- | ||
| Target Release: | One-off release | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: |
PATCH NAME:
1018683
PRODUCT NAME:
JBoss Portal Platform (JPP)
VERSION:
6.0
SHORT DESCRIPTION:
Picketlink IDM cache can't be invalidated when realm name containing slash.
LONG DESCRIPTION:
Picketlink cache implementation brings inconsistency in namespace by replacing the slash with hyphen.
MANUAL INSTALL INSTRUCTIONS:
Replace the files
$JPP6.0_HOME/modules/org/gatein/lib/main/picketlink-idm-cache-1.4.1.Final-redhat-1.jar
$JPP6.0_HOME/modules/org/gatein/lib/main/picketlink-idm-core-1.4.1.Final-redhat-1.jar
$JPP6.0_HOME/modules/org/gatein/lib/main/picketlink-idm-hibernate-1.4.1.Final-redhat-1.jar
$JPP6.0_HOME/modules/org/gatein/lib/main/picketlink-idm-ldap-1.4.1.Final-redhat-1.jar
with the patched ones.
COMPATIBILITY:
N/A
DEPENDENCIES:
N/A
SUPERSEDES:
N/A
SUPERSEDED BY:
N/A
CREATOR:
Gary Hu
DATE:
Oct 14, 2013
|
Story Points: | --- |
| Clone Of: | 1016420 | Environment: | |
| Last Closed: | 2013-10-18 13:45:13 UTC | Type: | Support Patch |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 1016420, 1032440 | ||
| Bug Blocks: | |||
| Attachments: | |||
|
Comment 1
Gary Hu
2013-10-15 04:29:04 UTC
Created attachment 812306 [details]
picketlink-idm-cache-1.4.1.Final-redhat-1.jar
Created attachment 812307 [details]
picketlink-idm-core-1.4.1.Final-redhat-1.jar
Created attachment 812308 [details]
picketlink-idm-hibernate-1.4.1.Final-redhat-1.jar
Created attachment 812309 [details]
picketlink-idm-ldap-1.4.1.Final-redhat-1.jar
Here is how I tested the patch: To install the patch, please copy the files in the place of the original ones: cp picketlink-idm-cache-1.4.1.Final-redhat-1.jar ./modules/org/gatein/lib/main/picketlink-idm-cache-1.4.1.Final-redhat-1.jar cp picketlink-idm-core-1.4.1.Final-redhat-1.jar ./modules/org/gatein/lib/main/picketlink-idm-core-1.4.1.Final-redhat-1.jar cp picketlink-idm-hibernate-1.4.1.Final-redhat-1.jar ./modules/org/gatein/lib/main/picketlink-idm-hibernate-1.4.1.Final-redhat-1.jar cp picketlink-idm-ldap-1.4.1.Final-redhat-1.jar ./modules/org/gatein/lib/main/picketlink-idm-ldap-1.4.1.Final-redhat-1.jar Here is how I verified the patch: - run JPP 6.0.0 without the patch, run a JConsole and connect to JBoss process, go to MBeans tab, find exo -> portal(the 2nd one from the top) -> PicketLinkIDMCacheService -> plidmcache -> Operations -> and now you can do printCaches, to see that root user is cached. When you invoke a invalidate with parameter: idm_realm_portal/USERS/root, and rerun printCaches, nothing happens. When you apply the patch, and run invalidate on this method, you will see that the user is properly invalidated. I was able to reproduce the test suggested by Adam Kovari, so this patch fixes the issue. MD5 sums of the JAR files a5ea3eaee46a4b012b3556434102eb8d picketlink-idm-cache-1.4.1.Final-redhat-1.jar 7f2ad34fbe427cec563cf2c360e50351 picketlink-idm-core-1.4.1.Final-redhat-1.jar 41c27a700c6b73aa3a936758b95fdc08 picketlink-idm-hibernate-1.4.1.Final-redhat-1.jar a132c7519a02e09b7d2e38e67caf5087 picketlink-idm-ldap-1.4.1.Final-redhat-1.jar |