Caused by: org.hibernate.AnnotationException: No identifier specified for entity: com.example.domain.Geoname at org.hibernate.cfg.InheritanceState.determineDefaultAccessType(InheritanceState.java:277) at org.hibernate.cfg.InheritanceState.getElementsToProcess(InheritanceState.java:224) at org.hibernate.cfg.AnnotationBinder.bindClass(AnnotationBinder.java:664) at org.hibernate.cfg.Configuration$MetadataSourceQueue.processAnnotatedClassesQueue(Configuration.java:3449) at org.hibernate.cfg.Configuration$MetadataSourceQueue.processMetadata(Configuration.java:3403) at org.hibernate.cfg.Configuration.secondPassCompile(Configuration.java:1330) at org.hibernate.cfg.Configuration.buildSessionFactory(Configuration.java:1730)
Bug[ECA-5959] - Disabling OcspKeyBinding doesn't take effect until restart[ECA-6004] - RA Web: The field SAN MS-UPN is broken in Make New Request[ECA-6042] - Forbid non-modifiable empty Subject DN/Alt Name/Directory Attributes in EEP[ECA-6043] - Public Web: Create Keystore for Key Recovery displays Key specification drop-down menu[ECA-6101] - Disabling authorization cache, with value -1, gives error[ECA-6102] - Possible NPE when looking for database error to display[ECA-6119] - Regression: Role Members normalizes serial numbers with leading zeros [ECA-6143] - Regression: RA web can't process CSR[ECA-6147] - CMP Revocation with PBE responseProtection where KeyId is missing gives NPE[ECA-6151] - Misplaced "invalid certificate request" message[ECA-6153] - Regression: Processed approvals not listed in RA web[ECA-6157] - NPE in RA enrollment page when there's an end entity e-mail but no SAN[ECA-6158] - EST checkin causes Community build to fail[ECA-6159] - CMP: revocation should handle empty header.recipient[ECA-6163] - CAA Validator outputs stacktrace for expired DNSSEC protected records[ECA-6164] - Regression: ClassCastException when visiting "Search End Entities" in /ejbca/adminweb[ECA-6181] - NPE editing end entity with name constraints in profile, but no ExtendedInformation in entity[ECA-6183] - ServiceTypeHolder and ModuleTypeHolder.equals compares the wrong type[ECA-6184] - HardTokenInformation.equals compares the wrong type[ECA-6185] - RaRoleMemberBean compares the wrong type in getAvailableMatchKeys[ECA-6186] - PeerRaMasterServiceThreadBean compares the wrong type in keepServingRaPeer[ECA-6188] - GUI: Certificate Profiles form visually broken[ECA-6190] - EJBCA 6.x should handle legacy access match types from EJBCA 3.x[ECA-6193] - ejbca.cmd on windows does not handle enough arguments for all commands[ECA-6194] - CMP: enabling CMP over tcp causes deployment failure on modern Jboss[ECA-6201] - CMP: CA by KeyId function should work with internaltionalized characters, but be limited in length[ECA-6209] - CAA Validator seems to fail for gaps in DNSSEC domain records[ECA-6214] - Fix warnings in CT code[ECA-6216] - EJBCA's implementation of ValidatingResolver fails to receive an NSEC3 if CAA record set on domain is empty[ECA-6218] - Regression: NPE when performing browser enrollment with "allow extension override" enabled[ECA-6225] - Concurrent modifiation in ConfigurationHolder during startup with custom WS modifications[ECA-6231] - OCSP Responder may crash the VA's default responder signing certificate has expired. [ECA-6232] - Upgrade seems to cause a ConcurrentModificationException since lib upgrade[ECA-6233] - Correct upgrade guide in terms of obligatory versions[ECA-6235] - Hide EST Configuration menu options if module is not present[ECA-6240] - Roles upgraded from old (
Entity Framework Profiler v5.0 Build 5028
Download Zip: https://urluss.com/2vDCM1
Improvement[ECA-3959] - Editing end entity profile generates unnecessary INFO[ECA-4413] - Simplify EJB lookups in CAAdminSessionBean[ECA-4438] - Remove unused caid parameter in CA.createPKCS7Rollover[ECA-4499] - Allow longer SAN and DN by default[ECA-4673] - Downloading an non-existent delta-CRL on the public web leads to a 404[ECA-4690] - Replace deprecated references to org.bouncycastle.asn1.x509.SubjectPublicKeyInfo.SubjectPublicKeyInfo(ASN1Sequence)[ECA-4795] - External RA: NPE in external RA gui when externalra-gui.issuerchain points to a non existing file[ECA-4803] - Security hardening[ECA-4906] - Limit OCSP Nonce to 32 bytes[ECA-4914] - Don't throw RTE when checking for non-existing CryptoToken activation status[ECA-4932] - Exclude install properties files from ejbca.ear[ECA-4936] - ConcurrentCache: Improve performance[ECA-4947] - Resetting an end entity password after key recovery should not require 'Edit End Entities'-rights[ECA-4952] - Simplified X509CertificateAuthenticationToken constructor[ECA-4963] - Certificate Profiles: Keep sorting, but sort default profile types first.[ECA-4970] - Set secure flag on Admin GUI session cookie[ECA-4983] - ejbcajslib.js has unneeded comment chars[ECA-4987] - Set search.cgi welcome page for RFC 4387 CRL and certificate stores[ECA-4998] - Document that CMP Unid support currently isn't supported[ECA-5029] - Usability improvement, limit Policy User Notice text field to 200 characters[ECA-5044] - Security Improvement[ECA-5047] - Improve pom.xml for cert-cvc[ECA-5088] - Move all CRUD methods from ApprovalData into ApprovalSessionBean[ECA-5106] - Add database column for subjectAltNames (SAN) in CertificateData[ECA-5115] - Allow notifications to be sent when admin has an external certificate not available in the database[ECA-5130] - Fix some resource leaks and thread locking issues in source[ECA-5142] - Generalize and improve InternalKeyBindingProperty[ECA-5147] - MS SQL server support in External RA build task[ECA-5148] - Perform some cosmetic improvements to the approve action page[ECA-5160] - Have externalized Approvals initialize their authentication tokens[ECA-5168] - Improve system tests for application servers that enforce class loading[ECA-5192] - Don't show admin roles that can't approve or view approvals[ECA-5195] - RA Enrollment: Show password only with downloading keystore[ECA-5196] - RA Enrollment: Provide user with more verbose error message during token creation[ECA-5203] - RA enrollment: Add support for autogenerated passwords[ECA-5212] - Sort Approvals by Request Date by default[ECA-5214] - KaRA: creating end entity should set email notification when it is required[ECA-5215] - KaRA: PRA Error handling when not unique subject DN or public key[ECA-5226] - Improve exceptions handling over peers to support more than just a message[ECA-5241] - Improve RA API exception handling[ECA-5247] - Change which requests are shown under the Pending and Processed tabs[ECA-5257] - RA enrollment: Download Token name should be CN value[ECA-5273] - Query.toString() should output something readable[ECA-5300] - Certificate Policies in the same order in certificate encoding as in the GUI[ECA-5301] - Add instruction for upgrade[ECA-5307] - PRA: Manage requests should show request ID[ECA-5317] - Autogenerated EE usernames as configurable with EEP[ECA-5318] - RA enrollment: Remove password fields with certificate creation if approval are not required[ECA-5332] - Statedump import should skip revocation of end entities' certificates[ECA-5343] - KaRA: AuthLoginException should contain error code, fix missing parameter to error messages[ECA-5344] - KaRA: password should be called enrollment code[ECA-5355] - KaRA: some reasons missing when explaining why admin can't approve a certain request[ECA-5356] - Delete modules/dist directory on clean[ECA-5357] - KaRA Usability: request form clearing and email[ECA-5362] - KaRA Usability: Rename "Needs Approval" and "Pending Approval"[ECA-5371] - KaRA Usability: more information when finalizing enrollment[ECA-5377] - Improvements for Approval Profiles Documentation[ECA-5393] - Log subject DN of cert failing validity check[ECA-5400] - KaRA: Document authorization rules for RA User and RA Admin[ECA-5405] - Security hardening[ECA-5410] - Approval profile notifications ability to include admin who last approved request[ECA-5418] - Show approval request type on the Manage Request page[ECA-5421] - CA Token Properties upgrade should debug log and be case insensitive
Sub-task[ECA-4446] - Introduce typing for ListDataModel[ECA-4800] - Support for request revocation of authorized certificates[ECA-4867] - Long hanging peer connections for reverse calls[ECA-4870] - Create a module for the Public RA interface and make sure it is deployed with the EJBCA EAR[ECA-4874] - Add End Entity Profile ID column to CertificateData[ECA-4875] - Create a basic PrimeKey branded CSS for the RA interface[ECA-4879] - Create/modify an authentication token that handles nestled credentials[ECA-4881] - Reverse calls should use AuthenticationToken with caller's server side TLS cert[ECA-4898] - Create initial RA enrollment workflow[ECA-4907] - Implement Approval Profiles and convert the old approvals to the appropriate profile.[ECA-4908] - KaRA-Approvals: Handle approval request according to approval profiles[ECA-4911] - KaRA-Approvals: Implement "Edit"[ECA-4918] - Method to list access rules that the AuthenticationToken is authorized to[ECA-4919] - Call RA peer when access rules change[ECA-4920] - RaAccessBean on RA for checking authorization[ECA-4922] - Introduce PublicAccessAuthenticationToken[ECA-4927] - Improve logging and retries of peer connections[ECA-4934] - Improve performance of LookAheadObjecInputStream tree[ECA-4937] - Proper error handling[ECA-4938] - Basic RA client HTTP session handling[ECA-4940] - I18N: Handle right to left languages in RA[ECA-4941] - I18N: Use UTF-8 in resource bundles and add fallback to default language[ECA-4942] - Peer Connector config for long-handing RA threads[ECA-4944] - Simplify authorization of server side TLS certificates for Peer RA[ECA-4948] - Test required access rules for EJBCA WS keyRecovery operation[ECA-4954] - Event driven throttle up of long hanging connections[ECA-4962] - Per-AuthenticationToken cache for AccessSets[ECA-4966] - Prevent race condition when app server is started and quickly shutdown[ECA-4969] - Prevent HTTP session stealing for TLS authenticated clients[ECA-4973] - Reloading the RA Authorization Cache instead of clearing it[ECA-4975] - Improve RA JSF base according to best practices[ECA-4977] - KaRA: Add OWASP ESAPI best practices[ECA-4981] - KaRA Approvals: Create access rules to manage ApprovalProfiles[ECA-4984] - RA page for CA certificate and CRL downloads[ECA-4986] - Leave a database mark for EEP Id population when upgrading to 6.6.0[ECA-4994] - Convert RaMasterApiProxy into a singleton[ECA-4995] - Progressive Enhancement with KickAss RA[ECA-5006] - Page to view/handle approval requests in the RA UI[ECA-5011] - Create certificate search base page and basic API call to improve on[ECA-5013] - Use RaAccessBean to limit displayed choices in the menu[ECA-5016] - Use reflection Proxy for RaMasterApi mock objects in tests[ECA-5018] - Detect if RFC4387 CRL store is enabled and adapt CRL download URLs[ECA-5028] - Inform RA of latest authorization cache update number on reconnect[ECA-5032] - Create end entity search base page and basic API call to improve on[ECA-5040] - Test search functionality on large dataset and limit query database load when possible[ECA-5042] - Override serialization of CertificateDataWrapper, to handle passing CertificateData between different versions[ECA-5051] - KaRA-Approvals: Move method accessing the database to the session bean[ECA-5052] - KaRA-Approvals: Replace the current cache with a @singleton bean[ECA-5053] - KaRA-Approvals: Sort approval profiles in the AdminGUI[ECA-5054] - Remove unused approvals code from UI[ECA-5058] - Add Approval and Request Expiration periods options to Approval Profile[ECA-5061] - KaRA-Approvals: Set the right approval profiles[ECA-5064] - Change class name of ApprovalProfileNumberOfApprovals[ECA-5067] - KaRA-Approvals: Approval Profile Cache should be cleared in the CLI too[ECA-5068] - KaRA-Approvals: Update documentation about approvals[ECA-5070] - Authorization rights for enrollment with new request[ECA-5077] - KaRA-Approvals: ApprovalProfileTypes in ServiceLoader[ECA-5082] - Maintain 100% uptime when upgrading Approvals[ECA-5090] - Clean up test methods in RaMasterApi[ECA-5092] - JUnit test for API design violations[ECA-5097] - RA Certificate chain download as PKCS#7[ECA-5100] - Certificate details view in RA[ECA-5109] - Serialize exceptions from invocations[ECA-5110] - Implement RA certificate search by Subject Alternative Name[ECA-5113] - RA method to get approval request by hash (approvalId)[ECA-5120] - Public Access token match either PLAIN or CONFIDENTIAL transport[ECA-5121] - AccessMatchType.NONE should not requre a matchValue[ECA-5123] - Admin should be able to see which admin an approval request is waiting for[ECA-5125] - Log who edited an approval request[ECA-5126] - Add notBefore column to CertificateData[ECA-5127] - Implement RA certificate search by issuance date as advanced option[ECA-5137] - Split generic search string into fields[ECA-5143] - Add view functionality for EEs in RA[ECA-5154] - Show preview of certificate during RA enrollment[ECA-5157] - Update admin guide on Peer Systems with new RA functionality[ECA-5159] - Invoke EEP's revoked notification when an individual certificate is revoked[ECA-5162] - Add approval metadata to Partitioned Approval Profiles[ECA-5163] - Add view rights to partitioned approval profiles[ECA-5164] - Display completed steps as view only when performing approval (if view rights are held)[ECA-5172] - Add an e-mail field to approval partitions[ECA-5173] - Add notification evaluation to approval executions[ECA-5177] - Refactor download credentials type during enrollment on PRA[ECA-5180] - Show "certificate preview" during enrollment on PRA[ECA-5182] - Enforce certificate profile algorightms for CSR during PRA enrollment[ECA-5183] - Fix approvals in the RA GUI after the refactoring[ECA-5186] - PRA enrollment: add support for the multiple non-modifiable values for EE fields[ECA-5189] - Approval Profile page renderes non-JS button in view mode[ECA-5200] - Add Web Designer styles and modifications, including mobile[ECA-5201] - Add support for nesting of parameter type List in RaMasterApi[ECA-5202] - Deserialized NestableAuthenticationTokens needs to be re-initialized within JVM[ECA-5205] - Use certs-only PKCS#7 / CMS on RA[ECA-5207] - Allow configuration of /ra_slave/manage from simplified peer auth view[ECA-5208] - RA enrollment: Refactor the RA interface according to the synchup week 27[ECA-5211] - Clean up GUI request authorization checks[ECA-5218] - Use more efficient backend call for RaMasterApi.getApprovalDataByRequestHash[ECA-5219] - Add buttons for changing step order in the approval profile UI[ECA-5221] - Split generic search string into fields[ECA-5222] - RA enrollment: Improve handling of NoJS buttons[ECA-5225] - RA enrollment: Hide static fields by default[ECA-5229] - Better handling of CSR upload during RA enrollment[ECA-5231] - Remove the approvalprofileid column from ApprovalData[ECA-5237] - Populate modifiable SAN fields from CSR during RA enrollment[ECA-5243] - Enforce CSR or key spec in EndEntityInformation when issuing a certificate[ECA-5248] - Don't localize logged messages using current users selected locale[ECA-5313] - KaRA Usability: Start step with nr 1 instead of 0 in Approval Profiles in Admin GUI[ECA-5314] - KaRA Usability: should be able to notify what partition (name) was performed[ECA-5316] - KaRA Usability: rename the word Partition for appoval parts[ECA-5340] - KaRA Usability: Shorten auto-generated username to 32 chars 2ff7e9595c
Comentarios