February 2017 - jboss-jira - Jboss List Archives

[JBoss JIRA] (ELY-902) Deployment fails when unreachable LDAP is used for Elytron LDAP authentication and ldap-realm.direct-verification=true

by Jan Kalina (JIRA)

[ https://issues.jboss.org/browse/ELY-902?page=com.atlassian.jira.plugin.sy... ] Jan Kalina commented on ELY-902: -------------------------------- *Low level problem:* following returns false: {code}securityDomain.getEvidenceVerifySupport(evidenceType).mayBeSupported(){code} > Deployment fails when unreachable LDAP is used for Elytron LDAP authentication and ldap-realm.direct-verification=true > ---------------------------------------------------------------------------------------------------------------------- > > Key: ELY-902 > URL: https://issues.jboss.org/browse/ELY-902 > Project: WildFly Elytron > Issue Type: Bug > Components: Realms > Affects Versions: 1.1.0.Beta21 > Reporter: Ondrej Lukas > Assignee: Darran Lofthouse > Priority: Blocker > > In case when LDAP server used by Elytron dir-context is unreachable (e.g. LDAP is down or some network failures occur) or when dir-context is incorrectly set (e.g. used password is wrong) then application which uses ldap-realm with direct-verification=true and which uses this dir-context cannot be deployed. Deployment fails and confusing exception occurs in server log. > We request blocker since it causes that deployments (which have already been successfully deployed) can unexpectedly fail when server is restarted/reloaded in time when LDAP server is unreachable. > Deployment fails with following exception in server log: > {code} > ERROR [org.jboss.msc.service.fail] (ServerService Thread Pool -- 65) MSC000001: Failed to start service jboss.undertow.deployment.default-server.default-host./print-roles: org.jboss.msc.service.StartException in service jboss.undertow.deployment.default-server.default-host./print-roles: java.lang.RuntimeException: java.lang.IllegalStateException: WFLYUT0085: The required mechanism 'BASIC' is not available from the HttpAuthenticationFactory. > at org.wildfly.extension.undertow.deployment.UndertowDeploymentService$1.run(UndertowDeploymentService.java:84) > at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511) > at java.util.concurrent.FutureTask.run(FutureTask.java:266) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) > at java.lang.Thread.run(Thread.java:745) > at org.jboss.threads.JBossThread.run(JBossThread.java:320) > Caused by: java.lang.RuntimeException: java.lang.IllegalStateException: WFLYUT0085: The required mechanism 'BASIC' is not available from the HttpAuthenticationFactory. > at io.undertow.servlet.core.DeploymentManagerImpl.deploy(DeploymentManagerImpl.java:239) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentService.startContext(UndertowDeploymentService.java:99) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentService$1.run(UndertowDeploymentService.java:81) > ... 6 more > Caused by: java.lang.IllegalStateException: WFLYUT0085: The required mechanism 'BASIC' is not available from the HttpAuthenticationFactory. > at org.wildfly.extension.undertow.ApplicationSecurityDomainDefinition$ApplicationSecurityDomainService.lambda$initialSecurityHandler$4(ApplicationSecurityDomainDefinition.java:416) > at java.lang.Iterable.forEach(Iterable.java:75) > at org.wildfly.extension.undertow.ApplicationSecurityDomainDefinition$ApplicationSecurityDomainService.initialSecurityHandler(ApplicationSecurityDomainDefinition.java:413) > at org.wildfly.extension.undertow.ApplicationSecurityDomainDefinition$ApplicationSecurityDomainService.lambda$applyElytronSecurity$0(ApplicationSecurityDomainDefinition.java:356) > at io.undertow.servlet.core.DeploymentManagerImpl.setupSecurityHandlers(DeploymentManagerImpl.java:409) > at io.undertow.servlet.core.DeploymentManagerImpl.access$600(DeploymentManagerImpl.java:119) > at io.undertow.servlet.core.DeploymentManagerImpl$1.call(DeploymentManagerImpl.java:209) > at io.undertow.servlet.core.DeploymentManagerImpl$1.call(DeploymentManagerImpl.java:172) > at io.undertow.servlet.core.ServletRequestContextThreadSetupAction$1.call(ServletRequestContextThreadSetupAction.java:42) > at io.undertow.servlet.core.ContextClassLoaderSetupAction$1.call(ContextClassLoaderSetupAction.java:43) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1696) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1696) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1696) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1696) > at io.undertow.servlet.core.DeploymentManagerImpl.deploy(DeploymentManagerImpl.java:237) > ... 8 more > ERROR [org.jboss.as.controller.management-operation] (DeploymentScanner-threads - 1) WFLYCTL0013: Operation ("deploy") failed - address: ([("deployment" => "print-roles.war")]) - failure description: { > "WFLYCTL0080: Failed services" => {"jboss.undertow.deployment.default-server.default-host./print-roles" => "org.jboss.msc.service.StartException in service jboss.undertow.deployment.default-server.default-host./print-roles: java.lang.RuntimeException: java.lang.IllegalStateException: WFLYUT0085: The required mechanism 'BASIC' is not available from the HttpAuthenticationFactory. > Caused by: java.lang.RuntimeException: java.lang.IllegalStateException: WFLYUT0085: The required mechanism 'BASIC' is not available from the HttpAuthenticationFactory. > Caused by: java.lang.IllegalStateException: WFLYUT0085: The required mechanism 'BASIC' is not available from the HttpAuthenticationFactory."}, > "WFLYCTL0412: Required services that are not installed:" => ["jboss.undertow.deployment.default-server.default-host./print-roles"] > } > {code} > It is similar issue as ELY-668 - the difference is that {{direct-verification=true}} is configured in current issue. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (ELY-902) Deployment fails when unreachable LDAP is used for Elytron LDAP authentication and ldap-realm.direct-verification=true

by Jan Kalina (JIRA)

[ https://issues.jboss.org/browse/ELY-902?page=com.atlassian.jira.plugin.sy... ] Jan Kalina reassigned ELY-902: ------------------------------ Assignee: Jan Kalina (was: Darran Lofthouse) > Deployment fails when unreachable LDAP is used for Elytron LDAP authentication and ldap-realm.direct-verification=true > ---------------------------------------------------------------------------------------------------------------------- > > Key: ELY-902 > URL: https://issues.jboss.org/browse/ELY-902 > Project: WildFly Elytron > Issue Type: Bug > Components: Realms > Affects Versions: 1.1.0.Beta21 > Reporter: Ondrej Lukas > Assignee: Jan Kalina > Priority: Blocker > > In case when LDAP server used by Elytron dir-context is unreachable (e.g. LDAP is down or some network failures occur) or when dir-context is incorrectly set (e.g. used password is wrong) then application which uses ldap-realm with direct-verification=true and which uses this dir-context cannot be deployed. Deployment fails and confusing exception occurs in server log. > We request blocker since it causes that deployments (which have already been successfully deployed) can unexpectedly fail when server is restarted/reloaded in time when LDAP server is unreachable. > Deployment fails with following exception in server log: > {code} > ERROR [org.jboss.msc.service.fail] (ServerService Thread Pool -- 65) MSC000001: Failed to start service jboss.undertow.deployment.default-server.default-host./print-roles: org.jboss.msc.service.StartException in service jboss.undertow.deployment.default-server.default-host./print-roles: java.lang.RuntimeException: java.lang.IllegalStateException: WFLYUT0085: The required mechanism 'BASIC' is not available from the HttpAuthenticationFactory. > at org.wildfly.extension.undertow.deployment.UndertowDeploymentService$1.run(UndertowDeploymentService.java:84) > at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511) > at java.util.concurrent.FutureTask.run(FutureTask.java:266) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) > at java.lang.Thread.run(Thread.java:745) > at org.jboss.threads.JBossThread.run(JBossThread.java:320) > Caused by: java.lang.RuntimeException: java.lang.IllegalStateException: WFLYUT0085: The required mechanism 'BASIC' is not available from the HttpAuthenticationFactory. > at io.undertow.servlet.core.DeploymentManagerImpl.deploy(DeploymentManagerImpl.java:239) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentService.startContext(UndertowDeploymentService.java:99) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentService$1.run(UndertowDeploymentService.java:81) > ... 6 more > Caused by: java.lang.IllegalStateException: WFLYUT0085: The required mechanism 'BASIC' is not available from the HttpAuthenticationFactory. > at org.wildfly.extension.undertow.ApplicationSecurityDomainDefinition$ApplicationSecurityDomainService.lambda$initialSecurityHandler$4(ApplicationSecurityDomainDefinition.java:416) > at java.lang.Iterable.forEach(Iterable.java:75) > at org.wildfly.extension.undertow.ApplicationSecurityDomainDefinition$ApplicationSecurityDomainService.initialSecurityHandler(ApplicationSecurityDomainDefinition.java:413) > at org.wildfly.extension.undertow.ApplicationSecurityDomainDefinition$ApplicationSecurityDomainService.lambda$applyElytronSecurity$0(ApplicationSecurityDomainDefinition.java:356) > at io.undertow.servlet.core.DeploymentManagerImpl.setupSecurityHandlers(DeploymentManagerImpl.java:409) > at io.undertow.servlet.core.DeploymentManagerImpl.access$600(DeploymentManagerImpl.java:119) > at io.undertow.servlet.core.DeploymentManagerImpl$1.call(DeploymentManagerImpl.java:209) > at io.undertow.servlet.core.DeploymentManagerImpl$1.call(DeploymentManagerImpl.java:172) > at io.undertow.servlet.core.ServletRequestContextThreadSetupAction$1.call(ServletRequestContextThreadSetupAction.java:42) > at io.undertow.servlet.core.ContextClassLoaderSetupAction$1.call(ContextClassLoaderSetupAction.java:43) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1696) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1696) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1696) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1696) > at io.undertow.servlet.core.DeploymentManagerImpl.deploy(DeploymentManagerImpl.java:237) > ... 8 more > ERROR [org.jboss.as.controller.management-operation] (DeploymentScanner-threads - 1) WFLYCTL0013: Operation ("deploy") failed - address: ([("deployment" => "print-roles.war")]) - failure description: { > "WFLYCTL0080: Failed services" => {"jboss.undertow.deployment.default-server.default-host./print-roles" => "org.jboss.msc.service.StartException in service jboss.undertow.deployment.default-server.default-host./print-roles: java.lang.RuntimeException: java.lang.IllegalStateException: WFLYUT0085: The required mechanism 'BASIC' is not available from the HttpAuthenticationFactory. > Caused by: java.lang.RuntimeException: java.lang.IllegalStateException: WFLYUT0085: The required mechanism 'BASIC' is not available from the HttpAuthenticationFactory. > Caused by: java.lang.IllegalStateException: WFLYUT0085: The required mechanism 'BASIC' is not available from the HttpAuthenticationFactory."}, > "WFLYCTL0412: Required services that are not installed:" => ["jboss.undertow.deployment.default-server.default-host./print-roles"] > } > {code} > It is similar issue as ELY-668 - the difference is that {{direct-verification=true}} is configured in current issue. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (ELY-925) Update SecurityDomain to allow association with and retrieval from ClassLoader

by Darran Lofthouse (JIRA)

Darran Lofthouse created ELY-925: ------------------------------------ Summary: Update SecurityDomain to allow association with and retrieval from ClassLoader Key: ELY-925 URL: https://issues.jboss.org/browse/ELY-925 Project: WildFly Elytron Issue Type: Feature Request Components: API / SPI Reporter: Darran Lofthouse Assignee: Darran Lofthouse Priority: Critical Fix For: 1.1.0.Beta23 Get, Set, and Unset should all be backed by SecurityManager permissions. We may relax the permission assigned to Get once we have double checked sufficient permission checks on the SecurityDomain and SecurityIdentity. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (DROOLS-1426) Remove CDI extension from drools-compiler

by Karel Suta (JIRA)

[ https://issues.jboss.org/browse/DROOLS-1426?page=com.atlassian.jira.plugi... ] Karel Suta updated DROOLS-1426: ------------------------------- Labels: reported-by-qe (was: ) > Remove CDI extension from drools-compiler > ----------------------------------------- > > Key: DROOLS-1426 > URL: https://issues.jboss.org/browse/DROOLS-1426 > Project: Drools > Issue Type: Bug > Components: core engine > Affects Versions: 7.0.0.Beta6 > Reporter: Karel Suta > Assignee: Mario Fusco > Priority: Critical > Labels: reported-by-qe > Attachments: stacktrace.txt > > > CDI extension should be removed from drools-compiler [1] as it doesn't belong to core artifact. It can cause issues when deploying on various application servers like on WebSphere using Kie server - see attachment. > [1] https://github.com/droolsjbpm/drools/blob/7.0.0.Beta6/drools-compiler/src... -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (DROOLS-1426) Remove CDI extension from drools-compiler

by Karel Suta (JIRA)

Karel Suta created DROOLS-1426: ---------------------------------- Summary: Remove CDI extension from drools-compiler Key: DROOLS-1426 URL: https://issues.jboss.org/browse/DROOLS-1426 Project: Drools Issue Type: Bug Components: core engine Affects Versions: 7.0.0.Beta6 Reporter: Karel Suta Assignee: Mario Fusco Priority: Critical Attachments: stacktrace.txt CDI extension should be removed from drools-compiler [1] as it doesn't belong to core artifact. It can cause issues when deploying on various application servers like on WebSphere using Kie server - see attachment. [1] https://github.com/droolsjbpm/drools/blob/7.0.0.Beta6/drools-compiler/src... -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2269) Add transformers for IO subsystem

by Tomaz Cerar (JIRA)

Tomaz Cerar created WFCORE-2269: ----------------------------------- Summary: Add transformers for IO subsystem Key: WFCORE-2269 URL: https://issues.jboss.org/browse/WFCORE-2269 Project: WildFly Core Issue Type: Task Components: IO Reporter: Tomaz Cerar Assignee: Tomaz Cerar WORKER_TASK_KEEPALIVE changed default from 60 to 60_000 and it needs transformer now. This task is to examine if any other cases require transformers as well and add them. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-8035) Invalidation-cache creation fails with Caused by: org.infinispan.commons.CacheConfigurationException: ISPN000343: Must have a transport set in the global configuration

by Paul Ferraro (JIRA)

[ https://issues.jboss.org/browse/WFLY-8035?page=com.atlassian.jira.plugin.... ] Paul Ferraro moved JBEAP-8689 to WFLY-8035: ------------------------------------------- Project: WildFly (was: JBoss Enterprise Application Platform) Key: WFLY-8035 (was: JBEAP-8689) Workflow: GIT Pull Request workflow (was: CDW with loose statuses v1) Component/s: Clustering (was: Clustering) Affects Version/s: 10.1.0.Final (was: 7.1.0.DR11) > Invalidation-cache creation fails with Caused by: org.infinispan.commons.CacheConfigurationException: ISPN000343: Must have a transport set in the global configuration > ----------------------------------------------------------------------------------------------------------------------------------------------------------------------- > > Key: WFLY-8035 > URL: https://issues.jboss.org/browse/WFLY-8035 > Project: WildFly > Issue Type: Bug > Components: Clustering > Affects Versions: 10.1.0.Final > Reporter: Paul Ferraro > Assignee: Paul Ferraro > Priority: Critical > > When creating cache in newly creating cache container, it fails with \[1\]. > This fails with EAP 7.1.0.DR11 even though this works with EAP 7.0. As this is regression in comparison to EAP 7.0 setting priority to critical. > \[1\] > {noformat} > 16:24:10,561 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-2) MSC000001: Failed to start service org.wildfly.clustering.infinispan.cache-configuration.xxx.aaa: org.jboss.msc.service.StartException in service org.wildfly.clustering.infinispan.cache-configuration.xxx.aaa: Failed to start service > at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1978) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) > at java.lang.Thread.run(Thread.java:745) > Caused by: org.infinispan.commons.CacheConfigurationException: ISPN000343: Must have a transport set in the global configuration in order to define a clustered cache > at org.infinispan.configuration.cache.ClusteringConfigurationBuilder.validate(ClusteringConfigurationBuilder.java:115) > at org.infinispan.configuration.cache.ConfigurationBuilder.validate(ConfigurationBuilder.java:229) > at org.infinispan.configuration.cache.ConfigurationBuilder.build(ConfigurationBuilder.java:240) > at org.infinispan.configuration.ConfigurationManager.putConfiguration(ConfigurationManager.java:80) > at org.infinispan.manager.DefaultCacheManager.defineConfiguration(DefaultCacheManager.java:390) > at org.infinispan.manager.DefaultCacheManager.defineConfiguration(DefaultCacheManager.java:353) > at org.jboss.as.clustering.infinispan.DefaultCacheContainer.defineConfiguration(DefaultCacheContainer.java:73) > at org.wildfly.clustering.infinispan.spi.service.ConfigurationBuilder.start(ConfigurationBuilder.java:88) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:2032) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1955) > ... 3 more > 16:24:10,562 ERROR [org.jboss.as.controller.management-operation] (management-handler-thread - 1) WFLYCTL0013: Operation ("add") failed - address: ([ > ("subsystem" => "infinispan"), > ("cache-container" => "xxx"), > ("invalidation-cache" => "aaa") > ]) - failure description: { > "WFLYCTL0080: Failed services" => {"org.wildfly.clustering.infinispan.cache-configuration.xxx.aaa" => "org.jboss.msc.service.StartException in service org.wildfly.clustering.infinispan.cache-configuration.xxx.aaa: Failed to start service > Caused by: org.infinispan.commons.CacheConfigurationException: ISPN000343: Must have a transport set in the global configuration in order to define a clustered cache"}, > "WFLYCTL0412: Required services that are not installed:" => ["org.wildfly.clustering.infinispan.cache-configuration.xxx.aaa"] > } > {noformat} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (HAWKULARQE-22) Manual Testcases - Create and Run

by Hayk Hovsepyan (JIRA)

[ https://issues.jboss.org/browse/HAWKULARQE-22?page=com.atlassian.jira.plu... ] Hayk Hovsepyan commented on HAWKULARQE-22: ------------------------------------------ Created test run with test case inside: https://polarion.engineering.redhat.com/polarion/#/project/JBossON4/testr... > Manual Testcases - Create and Run > --------------------------------- > > Key: HAWKULARQE-22 > URL: https://issues.jboss.org/browse/HAWKULARQE-22 > Project: Hawkular QE > Issue Type: Sub-task > Reporter: Hayk Hovsepyan > Assignee: Hayk Hovsepyan > Labels: hawkular-qe-manual > -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (HAWKULARQE-20) Manual Testcases - Create and Run

by Hayk Hovsepyan (JIRA)

[ https://issues.jboss.org/browse/HAWKULARQE-20?page=com.atlassian.jira.plu... ] Hayk Hovsepyan commented on HAWKULARQE-20: ------------------------------------------ Test run is created containing test case: https://polarion.engineering.redhat.com/polarion/#/project/JBossON4/testr... > Manual Testcases - Create and Run > --------------------------------- > > Key: HAWKULARQE-20 > URL: https://issues.jboss.org/browse/HAWKULARQE-20 > Project: Hawkular QE > Issue Type: Sub-task > Reporter: Hayk Hovsepyan > Assignee: Hayk Hovsepyan > Labels: hawkular-qe-manual > -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-8034) Alternatives attribute "domain" doesn't exist in modcluster subsystem

by Radoslav Husar (JIRA)

Radoslav Husar created WFLY-8034: ------------------------------------ Summary: Alternatives attribute "domain" doesn't exist in modcluster subsystem Key: WFLY-8034 URL: https://issues.jboss.org/browse/WFLY-8034 Project: WildFly Issue Type: Bug Components: mod_cluster Affects Versions: 10.1.0.Final Reporter: Radoslav Husar Assignee: Radoslav Husar Priority: Minor modcluster resource contains the following attribute definition for "load-balancing-group" {code} "load-balancing-group" => { "type" => STRING, "description" => "loadBalancingGroup name.", "expressions-allowed" => true, "required" => false, "nillable" => true, "alternatives" => ["domain"], "min-length" => 1L, "max-length" => 2147483647L, "access-type" => "read-write", "storage" => "configuration", "restart-required" => "all-services" }, {code} But the alternatives constraint specifies a "domain" attribute that doesn't exist. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira February 2017