1. 14 Nov, 2014 1 commit
    • ='s avatar
      Resolve exception · eb9144d7
      = authored
      		org.jivesoftware.util.CertificateManager - Error decoding subjectAltName
      		java.lang.ClassCastException: org.bouncycastle.asn1.DERTaggedObject
      		cannot be cast to org.bouncycastle.asn1.ASN1Sequence
      eb9144d7
  2. 10 Nov, 2014 1 commit
  3. 03 Nov, 2014 1 commit
  4. 30 Oct, 2014 2 commits
    • Tom Evans's avatar
      Provide better defaults for Roster cache · a4a2eb47
      Tom Evans authored
      The username2roster cache was use the Openfire defaults of 256k/6hrs
      which is not optimal for a base installation. This sets the default max
      size to 1M and set the expiry to 30 minutes.
      a4a2eb47
    • Tom Evans's avatar
      OF-460: Persist log.debug.enabled property · af77674e
      Tom Evans authored
      Fix settings for debug log so the admin UI setting is retained across
      restarts. The system property "log.debug.enabled" may also be used to
      manage this setting. If provided via openfire.xml, the property will be
      migrated into the DB during startup.
      af77674e
  5. 27 Oct, 2014 1 commit
  6. 23 Oct, 2014 2 commits
  7. 22 Oct, 2014 1 commit
  8. 17 Oct, 2014 1 commit
    • Tom Evans's avatar
      OF-843: Update Hazelcast plugin · 5ff34d2d
      Tom Evans authored
      Updates include changes for Openfire Session API, plus changes needed to
      upgrade to Hazelcast 3.3.1; also some core housekeeping (NPE)
      5ff34d2d
  9. 14 Oct, 2014 1 commit
    • julian.moschuering's avatar
      fixed encrypted properties containing xml escaped data not saved correctly · 7e2db426
      julian.moschuering authored
      Encrypted properties containing data that needs xml escaping (eg a database password containing '&') are encryped in escaped form but decryption uses them directly. Encrypted properties do not need xml escaping.
      
      Eg:
      1. Install an mysql connection with the password 'pass&word'; password is saved as pass&word in properties.xml
      2. Launch openfire
      -> mysql connection is established correctly and password is now stored in encrypted form.
      4. Restart openfire
      5. Openfire startup fails due to incorrect database password (pass&word) is used.
      7e2db426
  10. 10 Aug, 2014 2 commits
    • Shawn Debnath's avatar
      3d115213
    • Shawn Debnath's avatar
      In setup, some of the host settings are loaded from XML properties specified... · 8b2743f6
      Shawn Debnath authored
      In setup, some of the host settings are loaded from XML properties specified in openfire.xml, while others are incorrectly loaded from whats currently in JiveGlobals. Since we are in setup mode, JiveGlobals.getProperty returns null thereby ignoring any property overrides in openfire.xml specified by the user.
      
      Changelog: 
      1. Instead of just blindly setting anonymous auth to true, check if user has an override property in XML configuration, if not, default to true.
      2. Call getXMLProperty to load user configuration override values and not what is currently in JiveGlobals. During setup mode, this is always null.
      3. Instead of setting default values for auth, user, group, card, lockout, securityAudit and admin class names, check if the user has provided overrides for those properties, and if so, use those, otherwise use defaults.
      4. Expose a method to retrieve XML property names, and then in finishSetup, go through the rest of the XML properties overridden by user that were not touched by setup and individually set those. This is particularly useful when users have to specify primary and secondary * hybrid providers.
      8b2743f6
  11. 06 Jun, 2014 1 commit
  12. 05 Jun, 2014 2 commits
  13. 04 Jun, 2014 2 commits
    • Dave Cridland's avatar
      a17da995
    • Dave Cridland's avatar
      OF-405 : Perform proper path validation on certificate chains · 78e4eff7
      Dave Cridland authored
      What this patch actually does is place existing certificates into a CertStore,
      including those from its (untrusted) keystore, the trust store, and any from
      the chain supplied by the peer, and then rebuild a chain back to a known trust
      anchor (from the trust store).
      
      This strategy will cope with unknown ICAs in chains, abbreviated chains, and so
      on, and replaces attempts to specifically handle self-signed certificates.
      
      That last said, there is an explicit shortcut to handle self-signed certificates
      which are supplied as end-entity certificates. These are simply checked against
      the trust store without any attempt to build a path.
      78e4eff7
  14. 09 May, 2014 1 commit
  15. 08 May, 2014 1 commit
  16. 02 May, 2014 1 commit
  17. 01 May, 2014 1 commit
  18. 07 Apr, 2014 1 commit
  19. 03 Apr, 2014 1 commit
  20. 20 Feb, 2014 2 commits
  21. 16 Feb, 2014 1 commit
  22. 30 Nov, 2013 1 commit
  23. 24 Sep, 2013 1 commit
  24. 13 May, 2013 1 commit
  25. 04 May, 2013 1 commit
  26. 03 May, 2013 1 commit
  27. 02 May, 2013 1 commit
  28. 06 Mar, 2013 1 commit
  29. 05 Mar, 2013 1 commit
  30. 14 Feb, 2013 1 commit
  31. 12 Feb, 2013 1 commit
  32. 04 Feb, 2013 1 commit
  33. 16 Jan, 2013 1 commit
  34. 09 Jan, 2013 1 commit