users@javaee-spec.java.net

[javaee-spec users] Re: [javaee-security-spec users] [jsr375-experts] Re: Final Call for Comments for EDR

From: reza_rahman <reza_rahman_at_lycos.com>
Date: Thu, 23 Feb 2017 06:45:30 -0500

When I heard about the schedule, this is the specification that worried me most. Did Oracle solicit feedback from Will before they decided on that announcement? What can really be done in the time frame mentioned with the current resource levels? Is the plan to significantly escalate resource commitments? Significantly scale down scope yet once again?
It would also be good to hear feedback from the major vendors on this. In the original Java EE 8 survey the security JSR ranked the highest in importance. Although the new survey did not ask about all the security JSR features, the security features that were mentioned also ranked extremely high. I would say this JSR is important enough to delay the overall release train if needed.
What do others think?
Sent via the Samsung Galaxy S7, an AT&T 4G LTE smartphone
-------- Original message --------From: Werner Keil <werner.keil_at_gmail.com> Date: 2/23/17 5:24 AM (GMT-05:00) To: jsr375-experts_at_javaee-security-spec.java.net Cc: Java EE Security API - JSR 375 - Experts <jsr375-experts_at_googlegroups.com> Subject: [javaee-security-spec users] [jsr375-experts] Re: Final Call for Comments for EDR
Will/all,

Thanks, that's good news. Despite the ball now rolling (and I think several requirements are pretty solid) do you think 375 will make it for the new "ambitious" Java EE 8 release goal (to be Final by July) or should 375 as a whole be considered more likely for the next Java EE umbrella release?

I copied the Google Group, is there any official mailing list or similar channel in sight that woudl replace the java.net list when it's gone?

Regards,

Werner



On Thu, Feb 23, 2017 at 2:06 AM, Will Hopkins <will.hopkins_at_oracle.com> wrote:

  

    
  
  
    EG,

    

    I'd like to put out an EDR this week, or perhaps Monday. I think,
    based on the comments and discussion so far, that I've got a good
    enough understanding to update the spec for that purpose. There are
    some outstanding issues to be resolved, though, so please do reply
    to my latest comments in the "Comments on Current Spec Content (take
    3)" thread, or start a new thread, if you have input you'd like to
    see reflected in the EDR.

    

    Thanks,

    

    Will

    --
Will Hopkins | WebLogic Security Architect | +1.781.442.0310
Oracle Application Development
35 Network Drive, Burlington, MA 01803

  
© Oracle | By contributing to this project, you are agreeing to the terms of use described here.