Difference between revisions of "JGridstart/Notes"

From PDP/Grid Wiki
Jump to navigationJump to search
(add bug and todo)
(update bug status, add comments from Dennis (thanks for testing))
Line 20: Line 20:
 
** separate ui from passwordcache, implement cli
 
** separate ui from passwordcache, implement cli
 
** warn properly when unsupported password on single PKCS#12 entries are found
 
** warn properly when unsupported password on single PKCS#12 entries are found
 +
** [Mac] make sure password dialog is placed on top of the relevant window, not somewhere else
 
* html viewer
 
* html viewer
 
** on enter, go to next form element, or submit if at the end (like JEditorpane) -- upstream
 
** on enter, go to next form element, or submit if at the end (like JEditorpane) -- upstream
 
** make printing margins work, document on wiki, notify mailing list
 
** make printing margins work, document on wiki, notify mailing list
** [bug] html form cannot receive input on windows unless the focus is removed from a form element and given back
+
** [bug] [Win] html form cannot receive input unless the focus is removed from a form element and given back
 +
** [bug] [Mac] explicitely set base url in jar or stylesheet cannot be found
 
* gui
 
* gui
 
** make show/hide certificate list work on Java 1.5 and below
 
** make show/hide certificate list work on Java 1.5 and below
Line 29: Line 31:
 
** [bug] selecting certificate in menu doesn't update certificatelist when an invalid certificate is present but it is not the last certificate
 
** [bug] selecting certificate in menu doesn't update certificatelist when an invalid certificate is present but it is not the last certificate
 
** [bug] certificate list becomes empty after refresh when a certificate is removed from disk
 
** [bug] certificate list becomes empty after refresh when a certificate is removed from disk
** [bug] no level radiobutton in request wizard (second page) is selected when visiting the page for a second time after prev/next
+
* general tweaks
 +
** select Netherlands as default country in new request wizard
  
 
==Future ideas==
 
==Future ideas==

Revision as of 09:41, 4 June 2009

some notes on User:Wvengen@nikhef.nl/JGridStart

  • Private key (&passphrase)
    • keep in memory with timeout when appropriate
    • make sure it doesn't hit swap, if possible -- MEM06-C
    • MSC31-J never hardcode sensitive information
    • make sure it's not serializable
    • Securing Java, part 1, 2 and 3.
  • Human Interface Guidelines
  • Review certificate parameters before releasing, also by others
    • CertificatePair.generateRequest(): sigAlgName, keyAlgName
    • CertificatePair.generateRequest(): CSR attributes

TODO

  • passwords
    • try again when password fails, stop after a couple of times
    • show how many passwords remembered and add action to forget
    • separate ui from passwordcache, implement cli
    • warn properly when unsupported password on single PKCS#12 entries are found
    • [Mac] make sure password dialog is placed on top of the relevant window, not somewhere else
  • html viewer
    • on enter, go to next form element, or submit if at the end (like JEditorpane) -- upstream
    • make printing margins work, document on wiki, notify mailing list
    • [bug] [Win] html form cannot receive input unless the focus is removed from a form element and given back
    • [bug] [Mac] explicitely set base url in jar or stylesheet cannot be found
  • gui
    • make show/hide certificate list work on Java 1.5 and below
    • concurrency !!
    • [bug] selecting certificate in menu doesn't update certificatelist when an invalid certificate is present but it is not the last certificate
    • [bug] certificate list becomes empty after refresh when a certificate is removed from disk
  • general tweaks
    • select Netherlands as default country in new request wizard

Future ideas

  • Make estimated guess for some request form fields
    • Organisation: ip-address, emailaddress (specify in organisations.conf)
    • Country: GeoIP
    • Name: from system user
    • Certification level: detect demo/tutorial from hostname/ip-range/systemname/...
  • allow installation into the non-default system browser