[jboss-jira] [JBoss JIRA] (AS7-3544) Password masking problem

Anil Saldhana (JIRA) jira-events at lists.jboss.org
Wed Feb 1 18:21:48 EST 2012 

    [ https://issues.jboss.org/browse/AS7-3544?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12663575#comment-12663575 ] 

Anil Saldhana commented on AS7-3544:
------------------------------------

Also Jan,   you should also try  with  ${VAULT::xxxxxx}
That kicks in the expression resolved in AS71
(Note the ${} for the vault expression )
                
> Password masking problem
> ------------------------
>
>                 Key: AS7-3544
>                 URL: https://issues.jboss.org/browse/AS7-3544
>             Project: Application Server 7
>          Issue Type: Bug
>          Components: Security
>         Environment: commit: 9ccfb77ba644edf5002f4ee499b921da3849f63e
>            Reporter: Jan Lanik
>            Assignee: Stefano Maestri
>            Priority: Critical
>             Fix For: 7.1.0.Final
>
>
> HI I followed the instruction here https://community.jboss.org/wiki/JBossAS7SecuringPasswords
> to enable password masking feature in AS7.
> However with the datasource configured as described in said document, application server doesn't start and 
> report a following error:
> 15:03:16,964 ERROR [org.jboss.as.controller.management-operation] (ServerService Thread Pool -- 28) JBAS014612: Operation ("enable") failed - address: ([
>     ("subsystem" => "datasources"),
>     ("data-source" => "ExampleDS")
> ]): java.lang.SecurityException: JBAS013311: Security Exception
> 	at org.jboss.as.security.vault.RuntimeVaultReader.retrieveFromVault(RuntimeVaultReader.java:104) [jboss-as-security-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.server.RuntimeExpressionResolver.resolvePluggableExpression(RuntimeExpressionResolver.java:45) [jboss-as-server-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.ExpressionResolverImpl.resolveExpressionsRecursively(ExpressionResolverImpl.java:58) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.ExpressionResolverImpl.resolveExpressions(ExpressionResolverImpl.java:40) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.ModelControllerImpl.resolveExpressions(ModelControllerImpl.java:443) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.OperationContextImpl.resolveExpressions(OperationContextImpl.java:649) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.ParallelBootOperationContext.resolveExpressions(ParallelBootOperationContext.java:263) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.connector.subsystems.datasources.DataSourceModelNodeUtil.getResolvedStringIfSetOrGetDefault(DataSourceModelNodeUtil.java:335) [jboss-as-connector-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.connector.subsystems.datasources.DataSourceModelNodeUtil.from(DataSourceModelNodeUtil.java:150) [jboss-as-connector-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.connector.subsystems.datasources.DataSourceEnable$1.execute(DataSourceEnable.java:135) [jboss-as-connector-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.AbstractOperationContext.executeStep(AbstractOperationContext.java:378) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.AbstractOperationContext.doCompleteStep(AbstractOperationContext.java:265) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.AbstractOperationContext.completeStep(AbstractOperationContext.java:193) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.connector.subsystems.datasources.DataSourceEnable$2.execute(DataSourceEnable.java:236) [jboss-as-connector-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.AbstractOperationContext.executeStep(AbstractOperationContext.java:378) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.AbstractOperationContext.doCompleteStep(AbstractOperationContext.java:265) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.AbstractOperationContext.completeStep(AbstractOperationContext.java:193) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.connector.subsystems.datasources.DataSourceEnable$1.execute(DataSourceEnable.java:169) [jboss-as-connector-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.AbstractOperationContext.executeStep(AbstractOperationContext.java:378) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.AbstractOperationContext.doCompleteStep(AbstractOperationContext.java:265) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.AbstractOperationContext.completeStep(AbstractOperationContext.java:193) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.controller.ParallelBootOperationStepHandler$ParallelBootTask.run(ParallelBootOperationStepHandler.java:311) [jboss-as-controller-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886) [:1.6.0_24]
> 	at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908) [:1.6.0_24]
> 	at java.lang.Thread.run(Thread.java:662) [:1.6.0_24]
> 	at org.jboss.threads.JBossThread.run(JBossThread.java:122) [jboss-threads-2.0.0.GA.jar:2.0.0.GA]
> Caused by: org.jboss.security.vault.SecurityVaultException: PB00027: Vault Mismatch:Shared Key does not match for vault block:ds_MaskedDS and attributeName:password
> 	at org.picketbox.plugins.vault.PicketBoxSecurityVault.retrieve(PicketBoxSecurityVault.java:352) [picketbox-4.0.6.final.jar:4.0.6.final]
> 	at org.jboss.as.security.vault.RuntimeVaultReader.getValue(RuntimeVaultReader.java:124) [jboss-as-security-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.security.vault.RuntimeVaultReader.getValueAsString(RuntimeVaultReader.java:112) [jboss-as-security-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	at org.jboss.as.security.vault.RuntimeVaultReader.retrieveFromVault(RuntimeVaultReader.java:102) [jboss-as-security-7.1.0.Final-SNAPSHOT.jar:7.1.0.Final-SNAPSHOT]
> 	... 25 more

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the jboss-jira mailing list