User Story #838 (new)
Configure OMERO for SSL transport and document use
| Reported by: |
jmoore |
Owned by: |
jmoore
|
|
Priority:
|
major
|
Milestone:
|
Unscheduled
|
|
Component:
|
Security
|
Keywords:
|
jboss
|
|
Cc:
|
cxallan
|
Story Points:
|
n.a.
|
|
Sprint:
|
n.a.
|
Importance:
|
n.a.
|
|
Total Remaining Time:
|
4.5d
|
Estimated Remaining Time:
|
n.a.
|
As outlined in Chapter 9 of the JBoss server manual, it is possible to configure EJBS for secure transport. This requires a minimum amount of configuration in the EJBs themselves, and work by system administrators and client developers to enable the transport.
Documentation for this will be available at:
https://trac.openmicroscopy.org.uk/omero/wiki/OmeroSecurity
See also #1747, certificate-based login
References
| Referenced by: |
-
← Requirement (#1936): Secure Login and Ldap improvements
|
| References: |
-
→ Task (#1935): bin/omero login should cleanup sessions
(
Owner: jmoore
Remaining Time: 0
)
-
→ Task (#1580): Unify all command-line logins
(
Owner: jmoore
Remaining Time: 0
)
-
→ Task (#2218): Test callback rejected without category
(
Owner: jmoore
)
-
→ Task (#2099): SSL (ADH) is too slow!
(
Owner: jmoore
Remaining Time: 0
)
-
→ Task (#1943): Permit not saving sessions to ~/omero/sessions
(
Owner: jmoore
Remaining Time: 0.5
)
-
→ Task (#1944): Move omero/adduser.py to plugin
(
Owner: jmoore
Remaining Time: 0
)
-
→ Task (#2485): Mage/4064 refuses outside connections
(
Owner: jmoore
)
-
→ Task (#2001): Integrate group login into `bin/omero login`
(
Owner: jmoore
Remaining Time: 0
)
-
→ Task (#2047): Integrate `bin/omero login` args into `bin/omero shell`
(
Owner: jmoore
Remaining Time: 0.5
)
-
→ Task (#911): Examine changing of password with one-time (session) password
(
Owner: jmoore
Remaining Time: 0
)
-
→ Task (#1938): Enable flag for using SSL for all methods, not just login
(
Owner: jmoore
Remaining Time: 0
)
-
→ Task (#2212): Does HasPassword work when just password is session id?
(
Owner: jmoore
Remaining Time: 0
)
-
→ Task (#1939): Document use of more advanced encrypton schemes
(
Owner: atarkowska
)
-
→ Task (#1947): Clean up OmeroCli help messages
(
Owner: jmoore
Remaining Time: 0
)
-
→ Task (#2220): Check that sessions are completely closed on bad login
(
Owner: jmoore
)
-
→ Task (#2155): Check session filters for secure services
(
Owner: jmoore
)
-
→ Task (#2062): BUG: duplicate CLI args not permitted
(
Owner: jmoore
Remaining Time: 0
)
-
→ Task (#2080): BUG: Command line importer seems to be stuck using old 4063 port so cannot connect
(
Owner: bwzloranger
Remaining Time: 0
)
-
→ Task (#1998): Allow reusing last login without any CLI arguments
(
Owner: jmoore
Remaining Time: 0
)
-
→ Task (#1948): Allow re-using plugin login in non-plugins
(
Owner: jmoore
Remaining Time: 1
)
-
→ Task (#2176): Add use of createClient(false) to OmeroPy, web, and gateway
(
Owner: atarkowska
)
-
→ Task (#2178): Add optional SSL login to OMERO.importer
(
Owner: bwzloranger
)
-
→ Task (#2060): Add java keystore maintenance
(
Owner: jmoore
Remaining Time: 1.5
)
-
→ Task (#1937): Add ADH as default transport
(
Owner: jmoore
Remaining Time: 0
)
-
→ Task (#1997): Add 'profile' to support direct use of Ice.Default.Locator
(
Owner: jmoore
Remaining Time: 1
)
-
→ Task (#2250): Activate Ice SSL preferred or override
(
Owner: jmoore
Remaining Time: 0
)
|
Change History
