AAA

Overview

AAA (Authentication, Authorization, and Accounting) are services that help improve the security posture of an OpenDaylight deployment. By default, the majority of OpenDaylight’s northbound APIs (and all RESTCONF APIs) are protected by AAA after installing the +odl-restconf+ feature.

Behavior/Feature Changes

There are no changes to features.

New Features

No new features.

Deprecated and Removed Features

There are no deprecated or removed features.

Resolved Issues

The following table lists the issues resolved in this release.

Issues resolved in versions 0.19.0 through 0.19.3 (JIRA)

Type

Key

Summary

Resolution

Fix Version(s)

Bug

AAA-272

/moon property warning

Done

0.17.15, 0.18.5, 0.19.2

Bug

AAA-266

AAAEncryptionService does not inform user of Encryption/Decryption failures

Done

0.19.0

Bug

AAA-224

NullpointerException for MDSALDynamicAuthorizationFilter

Done

0.18.5, 0.19.0

Task

AAA-269

Remove aaa.encrypt.PKIUtil

Done

0.19.1

Task

AAA-268

Add Provide-Capability to aaa-cert

Done

0.17.15, 0.18.5, 0.19.0

Known Issues

The following table lists the known issues that exist in this release.

Resolved Issues in SR1

The following table lists the issues resolved in Service Release 1.

Issues resolved in versions 0.19.4 through 0.19.5 (JIRA)

Type

Key

Summary

Resolution

Fix Version(s)

Improvement

AAA-276

Remove TokenStore, which is OAuth2 remnant

Done

0.19.4

Task

AAA-275

Bump H2 database to 2.2.224

Done

0.17.16, 0.18.6, 0.19.4

Known Issues in SR1

The following table lists the known issues that exist in Service Release 1.

Resolved Issues in SR2

The following table lists the issues resolved in Service Release 2.

Issues resolved in versions 0.19.6 through 0.19.6 (JIRA)

Type

Key

Summary

Resolution

Fix Version(s)

Bug

AAA-283

WhiteboardWebServer does not validate WebContext.name()

Done

0.18.7, 0.19.6, 0.20.1

Bug

AAA-281

PasswordHashService initialization is not reliable

Done

0.18.7, 0.19.6, 0.20.0

Known Issues in SR2

The following table lists the known issues that exist in Service Release 2.

Resolved Issues in SR3

The following table lists the issues resolved in Service Release 3.

Issues resolved in versions 0.19.7 through 0.19.8 (JIRA)

Type

Key

Summary

Resolution

Fix Version(s)

Bug

AAA-282

Enabling NCSA logging in pax.web does not display user name in Jetty logs

Done

0.19.7, 0.20.3

Bug

AAA-279

Using dot in the whiteboard.context.name can creates incorrect session value

Done

0.18.7, 0.19.7, 0.20.1

Improvement

AAA-286

odl-aaa-shiro is causing commons-logging refreshes

Done

0.19.8, 0.20.4, 0.21.0

Known Issues in SR3

The following table lists the known issues that exist in Service Release 3.