February 2017 - jboss-jira - Jboss List Archives

[JBoss JIRA] (WFLY-7863) Allow expressions in credential-reference attributes

by Ilia Vassilev (JIRA)

[ https://issues.jboss.org/browse/WFLY-7863?page=com.atlassian.jira.plugin.... ] Ilia Vassilev reassigned WFLY-7863: ----------------------------------- Assignee: (was: Ilia Vassilev) > Allow expressions in credential-reference attributes > ---------------------------------------------------- > > Key: WFLY-7863 > URL: https://issues.jboss.org/browse/WFLY-7863 > Project: WildFly > Issue Type: Bug > Components: Security > Affects Versions: 11.0.0.Alpha1 > Reporter: Martin Choma > Labels: user_experience > > Change these attributes to {{"expressions-allowed" => true}} > {code} > These applies to key-store and key-manager: > */credential-reference/alias > */credential-reference/type > */credential-reference/clear-text > {code} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7970) Elytron keystore type default value

by Ilia Vassilev (JIRA)

[ https://issues.jboss.org/browse/WFLY-7970?page=com.atlassian.jira.plugin.... ] Ilia Vassilev reassigned WFLY-7970: ----------------------------------- Assignee: (was: Ilia Vassilev) > Elytron keystore type default value > ----------------------------------- > > Key: WFLY-7970 > URL: https://issues.jboss.org/browse/WFLY-7970 > Project: WildFly > Issue Type: Bug > Components: Security > Reporter: Martin Choma > > Make attribute type optional during key-store creation. If not set default value "JKS" can be used. > Basically in this issue is requesting same behaviour as legacy keystore in realms > {code:jsonl|title=ManagementModel} > "keystore-provider" => { > "type" => STRING, > "description" => "The provider for loading the keystore, defaults to JKS.", > "expressions-allowed" => true, > "required" => false, > "nillable" => true, > "default" => "JKS", > "min-length" => 1L, > "max-length" => 2147483647L, > "access-type" => "read-write", > "storage" => "configuration", > "restart-required" => "resource-services" > }, > {code} > Extracted from WFLY-7125 and tracked as separate issue. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-8068) Credential-store attribute relative-to doesn't reference path as required

by Ilia Vassilev (JIRA)

[ https://issues.jboss.org/browse/WFLY-8068?page=com.atlassian.jira.plugin.... ] Ilia Vassilev reassigned WFLY-8068: ----------------------------------- Assignee: (was: Ilia Vassilev) > Credential-store attribute relative-to doesn't reference path as required > ------------------------------------------------------------------------- > > Key: WFLY-8068 > URL: https://issues.jboss.org/browse/WFLY-8068 > Project: WildFly > Issue Type: Bug > Components: Security > Reporter: Josef Cacek > > Combination of {{path}} and {{relative-to}} attributes is common across all the elytron subsystem. All but one {{relative-to}} attributes list the "path" as required: > {code} > "relative-to" => { > "type" => STRING, > ... > "requires" => ["path"], > ... > } > {code} > The credential-store configuration doesn't define this dependency. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-8140) NPE in server log if client's password is null

by Jeff Mesnil (JIRA)

[ https://issues.jboss.org/browse/WFLY-8140?page=com.atlassian.jira.plugin.... ] Jeff Mesnil moved JBEAP-8886 to WFLY-8140: ------------------------------------------ Project: WildFly (was: JBoss Enterprise Application Platform) Key: WFLY-8140 (was: JBEAP-8886) Workflow: GIT Pull Request workflow (was: CDW with loose statuses v1) Component/s: JMS Security (was: Security) Affects Version/s: (was: 7.1.0.DR9) (was: 7.1.0.DR11) > NPE in server log if client's password is null > ----------------------------------------------- > > Key: WFLY-8140 > URL: https://issues.jboss.org/browse/WFLY-8140 > Project: WildFly > Issue Type: Bug > Components: JMS, Security > Reporter: Jeff Mesnil > Assignee: Jeff Mesnil > Priority: Blocker > Labels: authentication, eap71_alpha, validation > > If standalone JMS client creates connection with username and password where password is {{null}} like: > {code} > connectionFactory.createConnection("admin", null); > {code} > then server logs NPE: > {code} > 13:24:10,567 ERROR [org.apache.activemq.artemis.core.server] (default I/O-6) AMQ224018: Failed to create session: java.lang.NullPointerException > at java.util.Arrays.fill(Arrays.java:2951) [rt.jar:1.8.0_71] > at org.wildfly.security.evidence.PasswordGuessEvidence.destroy(PasswordGuessEvidence.java:53) [wildfly-elytron-1.1.0.Beta16.jar:1.1.0.Beta16] > at org.wildfly.extension.messaging.activemq.ElytronSecurityManager.authenticate(ElytronSecurityManager.java:107) > at org.wildfly.extension.messaging.activemq.ElytronSecurityManager.validateUser(ElytronSecurityManager.java:62) > at org.apache.activemq.artemis.core.security.impl.SecurityStoreImpl.authenticate(SecurityStoreImpl.java:132) > at org.apache.activemq.artemis.core.server.impl.ActiveMQServerImpl.createSession(ActiveMQServerImpl.java:1205) > at org.apache.activemq.artemis.core.protocol.core.impl.ActiveMQPacketHandler.handleCreateSession(ActiveMQPacketHandler.java:156) > at org.apache.activemq.artemis.core.protocol.core.impl.ActiveMQPacketHandler.handlePacket(ActiveMQPacketHandler.java:81) > at org.apache.activemq.artemis.core.protocol.core.impl.ChannelImpl.handlePacket(ChannelImpl.java:624) > at org.apache.activemq.artemis.core.protocol.core.impl.RemotingConnectionImpl.doBufferReceived(RemotingConnectionImpl.java:373) > at org.apache.activemq.artemis.core.protocol.core.impl.RemotingConnectionImpl.bufferReceived(RemotingConnectionImpl.java:356) > at org.apache.activemq.artemis.core.remoting.server.impl.RemotingServiceImpl$DelegatingBufferHandler.bufferReceived(RemotingServiceImpl.java:621) > at org.apache.activemq.artemis.core.remoting.impl.netty.ActiveMQChannelHandler.channelRead(ActiveMQChannelHandler.java:68) > at io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:292) > at io.netty.channel.AbstractChannelHandlerContext.fireChannelRead(AbstractChannelHandlerContext.java:278) > at io.netty.handler.codec.ByteToMessageDecoder.fireChannelRead(ByteToMessageDecoder.java:277) > at io.netty.handler.codec.ByteToMessageDecoder.channelRead(ByteToMessageDecoder.java:264) > at io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:292) > at io.netty.channel.AbstractChannelHandlerContext.fireChannelRead(AbstractChannelHandlerContext.java:278) > at io.netty.channel.DefaultChannelPipeline.fireChannelRead(DefaultChannelPipeline.java:962) > at org.xnio.netty.transport.AbstractXnioSocketChannel$ReadListener.handleEvent(AbstractXnioSocketChannel.java:435) > at org.xnio.netty.transport.AbstractXnioSocketChannel$ReadListener.handleEvent(AbstractXnioSocketChannel.java:371) > at org.xnio.ChannelListeners.invokeChannelListener(ChannelListeners.java:92) [xnio-api-3.4.1.Final-redhat-1.jar:3.4.1.Final-redhat-1] > at org.xnio.conduits.ReadReadyHandler$ChannelListenerHandler.readReady(ReadReadyHandler.java:66) [xnio-api-3.4.1.Final-redhat-1.jar:3.4.1.Final-redhat-1] > at io.undertow.protocols.ssl.SslConduit$SslReadReadyHandler.readReady(SslConduit.java:1128) > at org.xnio.nio.NioSocketConduit.handleReady(NioSocketConduit.java:89) [xnio-nio-3.4.1.Final-redhat-1.jar:3.4.1.Final-redhat-1] > at org.xnio.nio.WorkerThread.run(WorkerThread.java:567) [xnio-nio-3.4.1.Final-redhat-1.jar:3.4.1.Final-redhat-1] > {code} > Server should log the same error as if wrong password is provided: > {code} > 13:23:38,713 ERROR [org.apache.activemq.artemis.core.server] (default I/O-6) AMQ224018: Failed to create session: ActiveMQSecurityException[errorType=SECURITY_EXCEPTION message=AMQ119031: Unable to validate user] > at org.apache.activemq.artemis.core.security.impl.SecurityStoreImpl.authenticate(SecurityStoreImpl.java:144) > at org.apache.activemq.artemis.core.server.impl.ActiveMQServerImpl.createSession(ActiveMQServerImpl.java:1205) > at org.apache.activemq.artemis.core.protocol.core.impl.ActiveMQPacketHandler.handleCreateSession(ActiveMQPacketHandler.java:156) > at org.apache.activemq.artemis.core.protocol.core.impl.ActiveMQPacketHandler.handlePacket(ActiveMQPacketHandler.java:81) > at org.apache.activemq.artemis.core.protocol.core.impl.ChannelImpl.handlePacket(ChannelImpl.java:624) > at org.apache.activemq.artemis.core.protocol.core.impl.RemotingConnectionImpl.doBufferReceived(RemotingConnectionImpl.java:373) > at org.apache.activemq.artemis.core.protocol.core.impl.RemotingConnectionImpl.bufferReceived(RemotingConnectionImpl.java:356) > at org.apache.activemq.artemis.core.remoting.server.impl.RemotingServiceImpl$DelegatingBufferHandler.bufferReceived(RemotingServiceImpl.java:621) > at org.apache.activemq.artemis.core.remoting.impl.netty.ActiveMQChannelHandler.channelRead(ActiveMQChannelHandler.java:68) > at io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:292) > at io.netty.channel.AbstractChannelHandlerContext.fireChannelRead(AbstractChannelHandlerContext.java:278) > at io.netty.handler.codec.ByteToMessageDecoder.fireChannelRead(ByteToMessageDecoder.java:277) > at io.netty.handler.codec.ByteToMessageDecoder.channelRead(ByteToMessageDecoder.java:264) > at io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:292) > at io.netty.channel.AbstractChannelHandlerContext.fireChannelRead(AbstractChannelHandlerContext.java:278) > at io.netty.channel.DefaultChannelPipeline.fireChannelRead(DefaultChannelPipeline.java:962) > at org.xnio.netty.transport.AbstractXnioSocketChannel$ReadListener.handleEvent(AbstractXnioSocketChannel.java:435) > at org.xnio.netty.transport.AbstractXnioSocketChannel$ReadListener.handleEvent(AbstractXnioSocketChannel.java:371) > at org.xnio.ChannelListeners.invokeChannelListener(ChannelListeners.java:92) [xnio-api-3.4.1.Final-redhat-1.jar:3.4.1.Final-redhat-1] > at org.xnio.conduits.ReadReadyHandler$ChannelListenerHandler.readReady(ReadReadyHandler.java:66) [xnio-api-3.4.1.Final-redhat-1.jar:3.4.1.Final-redhat-1] > at io.undertow.protocols.ssl.SslConduit$SslReadReadyHandler.readReady(SslConduit.java:1128) > at org.xnio.nio.NioSocketConduit.handleReady(NioSocketConduit.java:89) [xnio-nio-3.4.1.Final-redhat-1.jar:3.4.1.Final-redhat-1] > at org.xnio.nio.WorkerThread.run(WorkerThread.java:567) [xnio-nio-3.4.1.Final-redhat-1.jar:3.4.1.Final-redhat-1] > {code} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-8139) Add smoke tests for Undertow SSL listener backed by Elytron SSL context

by Ondrej Kotek (JIRA)

[ https://issues.jboss.org/browse/WFLY-8139?page=com.atlassian.jira.plugin.... ] Ondrej Kotek moved JBEAP-8883 to WFLY-8139: ------------------------------------------- Project: WildFly (was: JBoss Enterprise Application Platform) Key: WFLY-8139 (was: JBEAP-8883) Workflow: GIT Pull Request workflow (was: CDW with loose statuses v1) Component/s: Test Suite (was: Test Suite) Affects Version/s: 11.0.0.Alpha1 (was: 7.1.0.DR12) > Add smoke tests for Undertow SSL listener backed by Elytron SSL context > ----------------------------------------------------------------------- > > Key: WFLY-8139 > URL: https://issues.jboss.org/browse/WFLY-8139 > Project: WildFly > Issue Type: Task > Components: Test Suite > Affects Versions: 11.0.0.Alpha1 > Reporter: Ondrej Kotek > Assignee: Ondrej Kotek > -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-8138) Upgrade Apache CXF to 3.1.10 (from 3.1.9)

by Rostislav Svoboda (JIRA)

[ https://issues.jboss.org/browse/WFLY-8138?page=com.atlassian.jira.plugin.... ] Rostislav Svoboda updated WFLY-8138: ------------------------------------ Git Pull Request: https://github.com/wildfly/wildfly/pull/9662 > Upgrade Apache CXF to 3.1.10 (from 3.1.9) > ----------------------------------------- > > Key: WFLY-8138 > URL: https://issues.jboss.org/browse/WFLY-8138 > Project: WildFly > Issue Type: Component Upgrade > Components: Web Services > Reporter: Rostislav Svoboda > Assignee: Alessio Soldano > > Upgrade Apache CXF to 3.1.10 (from 3.1.9) > We need to pick bug fixes like https://github.com/apache/cxf/commit/e30c816fbbaa3c589062d2ae0202fc47ddd7... -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-8138) Upgrade Apache CXF to 3.1.10 (from 3.1.9)

by Rostislav Svoboda (JIRA)

[ https://issues.jboss.org/browse/WFLY-8138?page=com.atlassian.jira.plugin.... ] Rostislav Svoboda reassigned WFLY-8138: --------------------------------------- Assignee: Rostislav Svoboda (was: Alessio Soldano) > Upgrade Apache CXF to 3.1.10 (from 3.1.9) > ----------------------------------------- > > Key: WFLY-8138 > URL: https://issues.jboss.org/browse/WFLY-8138 > Project: WildFly > Issue Type: Component Upgrade > Components: Web Services > Reporter: Rostislav Svoboda > Assignee: Rostislav Svoboda > > Upgrade Apache CXF to 3.1.10 (from 3.1.9) > We need to pick bug fixes like https://github.com/apache/cxf/commit/e30c816fbbaa3c589062d2ae0202fc47ddd7... -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-8138) Upgrade Apache CXF to 3.1.10 (from 3.1.9)

by Rostislav Svoboda (JIRA)

Rostislav Svoboda created WFLY-8138: --------------------------------------- Summary: Upgrade Apache CXF to 3.1.10 (from 3.1.9) Key: WFLY-8138 URL: https://issues.jboss.org/browse/WFLY-8138 Project: WildFly Issue Type: Component Upgrade Components: Web Services Reporter: Rostislav Svoboda Assignee: Alessio Soldano Upgrade Apache CXF to 3.1.10 (from 3.1.9) We need to pick bug fixes like https://github.com/apache/cxf/commit/e30c816fbbaa3c589062d2ae0202fc47ddd7... -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-4211) MBean implementation lifecycle methods in MSC threads

by RH Bugzilla Integration (JIRA)

[ https://issues.jboss.org/browse/WFLY-4211?page=com.atlassian.jira.plugin.... ] RH Bugzilla Integration commented on WFLY-4211: ----------------------------------------------- Vladimir Dosoudil <dosoudil(a)redhat.com> changed the Status of [bug 1401637|https://bugzilla.redhat.com/show_bug.cgi?id=1401637] from MODIFIED to ON_QA > MBean implementation lifecycle methods in MSC threads > ----------------------------------------------------- > > Key: WFLY-4211 > URL: https://issues.jboss.org/browse/WFLY-4211 > Project: WildFly > Issue Type: Bug > Components: JMX > Affects Versions: 9.0.0.Alpha1 > Reporter: Eduardo Martins > Assignee: Eduardo Martins > Fix For: 9.0.0.Beta1 > > > MBean lifecycle methods should not be invoked from MSC threads, the implementation of these may block the thread, for instance due to a JNDI bind. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-8137) Credential store alias with upper-case letters can't be added when Java assertions are enabled

by Josef Cacek (JIRA)

Josef Cacek created WFLY-8137: --------------------------------- Summary: Credential store alias with upper-case letters can't be added when Java assertions are enabled Key: WFLY-8137 URL: https://issues.jboss.org/browse/WFLY-8137 Project: WildFly Issue Type: Bug Components: Security Reporter: Josef Cacek Assignee: Darran Lofthouse Priority: Critical When Java assertions are enable then adding credential store entry (alias) with upper case letters fails with assertion error. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira February 2017