]
Brian Stansberry commented on WFCORE-3485:
------------------------------------------
[~mshikalw] I don't think this is an appropriate priority for right now. It is a minor
issue that will require too much discussion with people who have critical tasks.
Misleading failure-description for capabilities in domain
---------------------------------------------------------
Key: WFCORE-3485
URL:
https://issues.redhat.com/browse/WFCORE-3485
Project: WildFly Core
Issue Type: Bug
Components: Management
Affects Versions: 3.0.10.Final
Reporter: Ondrej Lukas
Priority: Minor
In case when configuration in domain.xml tries to reference any capability from host.xml
(or vice versa), but should not be able to reference it then it correctly fails, but there
is failure-description which is misleading.
Start domain with default domain.xml and host.xml and run following CLI command and see:
{code}
/profile=full/subsystem=elytron/http-authentication-factory=some-factory:add(http-server-mechanism-factory=global,security-domain=ManagementDomain)
{
"outcome" => "failed",
"failure-description" => {"domain-failure-description" =>
"WFLYCTL0369: Required capabilities are not available:
org.wildfly.security.security-domain.ManagementDomain in context
'profile=full'; Possible registration points for this capability:
/host=master/subsystem=elytron/security-domain=*
/profile=*/subsystem=elytron/security-domain=*"},
"rolled-back" => true
}
{code}
It should show only correct registration point
{{/profile=\*/subsystem=elytron/security-domain=\*}}. It is misleading because
ManagementDomain capability exists in
{{/host=master/subsystem=elytron/security-domain=*}}.