-
Notifications
You must be signed in to change notification settings - Fork 304
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
FISH-8215 : port solution from Glassfish #6535
FISH-8215 : port solution from Glassfish #6535
Conversation
jenkins test please |
Hello, @luiseufrasio , This PR as it is now is breaking the license of the code ported from Eclipse GlassFish. The file in I recommend that you either copy the whole file The LICENSE.txt file in the Payara source code should also mention EPL2 license to clarfiy that some parts of the Payara source code are distributed under this license and not under the CDDL license. This is required by the EPL2 license. For more information, read here: https://www.eclipse.org/legal/epl-2.0/ (especially the 3. Requirements section). |
nucleus/security/core/src/main/java/com/sun/enterprise/security/GroupPrincipal.java
Outdated
Show resolved
Hide resolved
I'm not a copyright expert, but I believe if we expressly license the file under GPL we're OK? Since this file exists from the original Oracle GlassFish days, I'm also fairly certain we can't just strip the original copyright from it.
The EPL license will get mentioned in the third party license file we generate and include in the release but I'll ask for advice on whether it also needs to be reflected in that file. My understanding is that is for our license, not necessarily the license of everything covered within the codebase. Again though, not a copyright expert! |
appserver/web/web-core/src/main/java/org/apache/catalina/realm/JAASRealm.java
Show resolved
Hide resolved
nucleus/security/core/src/main/java/com/sun/enterprise/security/GroupPrincipal.java
Outdated
Show resolved
Hide resolved
Hi, @Pandrex247. I think if you only use the GPL license, then it's OK. But the PR as it is now re-licenses the code from Eclipse GlassFish under both CDDL and GPL, which I think you can't do without approval of the original copyright holders within the Eclipse Foundation. If you strip the CDDL license from the file, then the file is distributed under the GPL+CP exception only, which should be fine. As a result, you cannot distribute the whole code base under the CDDL license, only under the GPL+CP exception. I think this is already the case, as some files in your existing code base have CDDL and GPL+CP license, and some other files have only EPL and GPL+CP license, so it's not possible to distribute all the code or final binaries under CDDL or EPL, only under GPL+CP exception. I'm not a lawyer either :) But I suggest getting an advice from a real lawyer. |
…y/GroupPrincipal.java Co-authored-by: Andrew Pielage <pandrex247@hotmail.com>
Description
package java.security.acl does not exist
Important Info
Blockers
None
Testing
New tests
None
Testing Performed
Samples, quicklook etc
Testing Environment
Zulu JDK 11.0.11 on Windows 11 with Maven 3.8.6
Documentation
None
Notes for Reviewers
None