Warning: Can't synchronize with repository "(default)" (/home/git/ome.git does not appear to be a Git repository.). Look in the Trac log for more information.
Notice: In order to edit this ticket you need to be either: a Product Owner, The owner or the reporter of the ticket, or, in case of a Task not yet assigned, a team_member"
Task #838 (new)
Configure OMERO for SSL transport and document use
— at Version 7
Reported by:
jamoore
Owned by:
atarkowska
Priority:
major
Milestone:
OMERO-Beta4.2
Component:
Security
Keywords:
jboss
Cc:
cxallan
Story Points:
n.a.
Sprint:
n.a.
Importance:
n.a.
Total Remaining Time:
3.0d
Estimated Remaining Time:
n.a.
As outlined in Chapter 9 of the JBoss server manual, it is possible to configure EJBS for secure transport. This requires a minimum amount of configuration in the EJBs themselves, and work by system administrators and client developers to enable the transport.
Documentation for this will be available at:
https://trac.openmicroscopy.org.uk/omero/wiki/OmeroSecurity
See also #1747 , certificate-based login
References
Referenced by:
← Requirement (#1936 ): Secure Login and Ldap improvements
References:
→ Task (#1935 ): bin/omero login should cleanup sessions
(
Owner : jamoore
Remaining Time : 0
)
→ Task (#1580 ): Unify all command-line logins
(
Owner : jamoore
Remaining Time : 0
)
→ Task (#2218 ): Test callback rejected without category
(
Owner : jamoore
)
→ Task (#2099 ): SSL (ADH) is too slow!
(
Owner : jamoore
Remaining Time : 0
)
→ Task (#1943 ): Permit not saving sessions to ~/omero/sessions
(
Owner : jamoore
Remaining Time : 0.5
)
→ Task (#1944 ): Move omero/adduser.py to plugin
(
Owner : jamoore
Remaining Time : 0
)
→ Task (#2001 ): Integrate group login into `bin/omero login`
(
Owner : jamoore
Remaining Time : 0
)
→ Task (#2047 ): Integrate `bin/omero login` args into `bin/omero shell`
(
Owner : jamoore
Remaining Time : 0
)
→ Task (#911 ): Examine changing of password with one-time (session) password
(
Owner : jamoore
Remaining Time : 0
Keywords : sessions
)
→ Task (#1938 ): Enable flag for using SSL for all methods, not just login
(
Owner : jamoore
Remaining Time : 0
)
→ Task (#2212 ): Does HasPassword work when just password is session id?
(
Owner : jamoore
Remaining Time : 0
)
→ Task (#1939 ): Document use of more advanced encrypton schemes
(
Owner : atarkowska
)
→ Task (#3232 ): Disallow changePassword etc. without SSL
(
Owner : jamoore
)
→ Task (#1947 ): Clean up OmeroCli help messages
(
Owner : jamoore
Remaining Time : 0
)
→ Task (#2220 ): Check that sessions are completely closed on bad login
(
Owner : jamoore
)
→ Task (#2155 ): Check session filters for secure services
(
Owner : jamoore
)
→ Task (#2485 ): Bug: Mage/4064 refuses outside connections
(
Owner : jamoore
Remaining Time : 0
)
→ Task (#2062 ): BUG: duplicate CLI args not permitted
(
Owner : jamoore
Remaining Time : 0
)
→ Task (#2080 ): BUG: Command line importer seems to be stuck using old 4063 port so cannot connect
(
Owner : bwzloranger
Remaining Time : 0
)
→ Task (#1998 ): Allow reusing last login without any CLI arguments
(
Owner : jamoore
Remaining Time : 0
)
→ Task (#1948 ): Allow re-using plugin login in non-plugins
(
Owner : jamoore
Remaining Time : 0
)
→ Task (#2176 ): Add use of createClient(false) to OmeroPy, web, and gateway
(
Owner : atarkowska
)
→ Task (#2178 ): Add optional SSL login to OMERO.importer
(
Owner : bwzloranger
)
→ Task (#2060 ): Add java keystore maintenance
(
Owner : jamoore
Remaining Time : 1.5
)
→ Task (#1937 ): Add ADH as default transport
(
Owner : jamoore
Remaining Time : 0
)
→ Task (#1997 ): Add 'profile' to support direct use of Ice.Default.Locator
(
Owner : jamoore
Remaining Time : 1
)
→ Task (#2250 ): Activate Ice SSL preferred or override
(
Owner : jamoore
Remaining Time : 0
)
Change History (7)
Owner
changed from jmoore to atarkowska
Milestone
changed from 3.0-Beta3 to 3.0-Beta4
Description
modified (diff )
Milestone
changed from OMERO-Beta4 to OMERO-Beta4.2
Description
modified (diff )
Download in other formats:
1.3.13-PRO © 2008-2011
Agilo Software all
rights reserved
(this page was served in: 0.118938 sec.)
r1949 and r1950 have initial server- and client-side (code) configuration. This does not include the JBoss configuration.