July 2017 - jboss-jira - Jboss List Archives

[JBoss JIRA] (WFCORE-2385) There are two different error messages for adding duplicate record to CS by same command.

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2385?page=com.atlassian.jira.plugi... ] Darran Lofthouse resolved WFCORE-2385. -------------------------------------- Fix Version/s: 3.0.0.Beta29 Resolution: Done > There are two different error messages for adding duplicate record to CS by same command. > ----------------------------------------------------------------------------------------- > > Key: WFCORE-2385 > URL: https://issues.jboss.org/browse/WFCORE-2385 > Project: WildFly Core > Issue Type: Bug > Components: Security > Reporter: Hynek Švábek > Assignee: Michal Petrov > Fix For: 3.0.0.Beta29 > > > There are two different error messages for adding duplicate record to CS by same command. > *How to reproduce* > {code} > /subsystem=elytron/credential-store=cs007:add(uri="cr-store://test/customcredCS007.jceks?create.storage=true", credential-reference={clear-text=pass123}) > {code} > {code} > /subsystem=elytron/credential-store=cs007/alias=alias001:add(secret-value=secret) > {code} > And now we try add there same alias with exactly same name and with name in uppercase > {code} > /subsystem=elytron/credential-store=cs007/alias=alias001:add(secret-value=secret) > { > "outcome" => "failed", > "failure-description" => "WFLYCTL0212: Duplicate resource [ > (\"subsystem\" => \"elytron\"), > (\"credential-store\" => \"cs007\"), > (\"alias\" => \"alias001\") > ]", > "rolled-back" => true > } > {code} > {code} > /subsystem=elytron/credential-store=cs007/alias=ALIAS001:add(secret-value=secret) > { > "outcome" => "failed", > "failure-description" => "WFLYELY00913: Credential alias \"alias001\" of credential type \"org.wildfly.security.credential.PasswordCredential\" already exists in the store", > "rolled-back" => true > } > {code} > You can see different error message. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 10 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2389) Definition Credential Store with non-existent storage file causes ugly failure-description with Exception.

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2389?page=com.atlassian.jira.plugi... ] Darran Lofthouse resolved WFCORE-2389. -------------------------------------- Fix Version/s: 3.0.0.Beta29 (was: 4.0.0.Alpha1) Resolution: Done > Definition Credential Store with non-existent storage file causes ugly failure-description with Exception. > ---------------------------------------------------------------------------------------------------------- > > Key: WFCORE-2389 > URL: https://issues.jboss.org/browse/WFCORE-2389 > Project: WildFly Core > Issue Type: Bug > Components: Security > Reporter: Hynek Švábek > Assignee: Darran Lofthouse > Fix For: 3.0.0.Beta29 > > > Definition Credential Store with non-existent storage file causes ugly failure-description with Exception. > When I define Credential > Store for non-existent JCEKS file > {code} > /subsystem=elytron/credential-store=cs_not_found_exception:add(uri="cr-store://test/cs/keystore-non-existent.jceks?store.password=pass123") > {code} > then I got very ugly failure description > {code} > { > "outcome" => "failed", > "failure-description" => { > "WFLYCTL0080: Failed services" => {"org.wildfly.security.credential-store-client.cs_not_found_exception" => "org.jboss.msc.service.StartException in service org.wildfly.security.credential-store-client.cs_not_found_exception: WFLYELY00004: Unable to start the service. > Caused by: org.wildfly.security.credential.store.CredentialStoreException: ELY09506: Cannot read credential storage file '/home/hsvabek/securityworkspace/VERIFICATION/2016_11_02_UX_testing/jboss-eap-7.1.0.DR7/standalone/data/cs/keystore-not_exists.jceks' for the store named 'cs_not_found_exception' > Caused by: java.io.FileNotFoundException: /home/hsvabek/securityworkspace/VERIFICATION/2016_11_02_UX_testing/jboss-eap-7.1.0.DR7/standalone/data/cs/keystore-not_exists.jceks (No such file or directory)"}, > "WFLYCTL0412: Required services that are not installed:" => ["org.wildfly.security.credential-store-client.cs_not_found_exception"], > "WFLYCTL0180: Services with missing/unavailable dependencies" => undefined > }, > "rolled-back" => true > } > {code} > *Suggestion for solution* > failure-description must not contain Exception or snippet stacktrace. > Description like that "Credential store file XYZ doesn't exist. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 10 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2390) Review filesystem-realm resource in Elytron subsystem

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2390?page=com.atlassian.jira.plugi... ] Darran Lofthouse reassigned WFCORE-2390: ---------------------------------------- Assignee: (was: Darran Lofthouse) > Review filesystem-realm resource in Elytron subsystem > ----------------------------------------------------- > > Key: WFCORE-2390 > URL: https://issues.jboss.org/browse/WFCORE-2390 > Project: WildFly Core > Issue Type: Bug > Components: Security > Affects Versions: 3.0.0.Beta7 > Reporter: Ondrej Lukas > Priority: Minor > > See description of JBEAP-6100 for more details. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 10 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2400) Review provider-loader resource in Elytron subsystem

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2400?page=com.atlassian.jira.plugi... ] Darran Lofthouse resolved WFCORE-2400. -------------------------------------- Fix Version/s: (was: 4.0.0.Alpha1) Resolution: Out of Date > Review provider-loader resource in Elytron subsystem > ---------------------------------------------------- > > Key: WFCORE-2400 > URL: https://issues.jboss.org/browse/WFCORE-2400 > Project: WildFly Core > Issue Type: Bug > Components: Security > Affects Versions: 3.0.0.Beta7 > Reporter: Ondrej Lukas > Assignee: Darran Lofthouse > Priority: Critical > > See description of JBEAP-6100 for more details. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 10 months

1
0
0 / 0

[JBoss JIRA] (DROOLS-1653) Unused method parameter "alphaNodeHashingThreshold" in CompositeObjectSinkAdapter

by Tibor Zimányi (JIRA)

Tibor Zimányi created DROOLS-1653: ------------------------------------- Summary: Unused method parameter "alphaNodeHashingThreshold" in CompositeObjectSinkAdapter Key: DROOLS-1653 URL: https://issues.jboss.org/browse/DROOLS-1653 Project: Drools Issue Type: Bug Components: core engine Affects Versions: 7.1.0.Beta3 Reporter: Tibor Zimányi Assignee: Mario Fusco Priority: Minor There is a suspicious unused method attribute "alphaNodeHashingThreshold" in CompositeObjectSinkAdapter. See this [1]. It can be a potential bug, because as you can see in the previous method in the class, the method is called with "0" as a parameter value for this. [1] https://github.com/kiegroup/drools/blob/38b68002a9cff5aeada9420cf87362a7b... -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 10 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2391) No log messages comming from Elytron

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2391?page=com.atlassian.jira.plugi... ] Darran Lofthouse resolved WFCORE-2391. -------------------------------------- Fix Version/s: 3.0.0.Beta29 Resolution: Done > No log messages comming from Elytron > ------------------------------------ > > Key: WFCORE-2391 > URL: https://issues.jboss.org/browse/WFCORE-2391 > Project: WildFly Core > Issue Type: Bug > Components: Security > Reporter: Josef Cacek > Assignee: Ingo Weiss > Priority: Critical > Fix For: 3.0.0.Beta29 > > > Elytron functionality is not covered (sufficiently) by log messages. > The log messages are cornerstone for customers when they're investigating configuration or functional issues. > Even when enabling {{TRACE}} log-level I was seeing No log messages coming from Elytron when I was configuring web authentication. When authentication fails it's not clear what's wrong - if password is invalid or permission mapper doesn't work or something else happened. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 10 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2401) Permission added using list-add should be validated before adding to Elytron constant-permission-mapper or simple-permission-mapper

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2401?page=com.atlassian.jira.plugi... ] Darran Lofthouse resolved WFCORE-2401. -------------------------------------- Resolution: Won't Fix Making as won't fix as this is attempting runtime validation during Stage.MODEL > Permission added using list-add should be validated before adding to Elytron constant-permission-mapper or simple-permission-mapper > ----------------------------------------------------------------------------------------------------------------------------------- > > Key: WFCORE-2401 > URL: https://issues.jboss.org/browse/WFCORE-2401 > Project: WildFly Core > Issue Type: Bug > Components: Security > Affects Versions: 3.0.0.Beta7 > Reporter: Ondrej Kotek > Assignee: Darran Lofthouse > Labels: user_experience > > Permission object added using {{list-add}} operation should be validated before being added to {{constant-permission-mapper}} or {{simple-permission-mapper}}. > The reproducer should behave like > {noformat} > [standalone@localhost:9990 /] /subsystem=elytron/constant-permission-mapper=cpm:add(permissions=[{class-name=java.io.FilePermission}]) > { > "outcome" => "failed", > "failure-description" => { > "WFLYCTL0080: Failed services" => {"org.wildfly.security.permission-mapper.cpm" => "org.jboss.msc.service.StartException in service org.wildfly.security.permission-mapper.cpm: WFLYELY00021: Exception while creating the permission object for the permission mapping. Please check [class-name], [target-name] (name of permission) and [action] of [java.io.FilePermission]. > Caused by: java.lang.IllegalArgumentException: invalid actions mask"}, > "WFLYCTL0412: Required services that are not installed:" => ["org.wildfly.security.permission-mapper.cpm"], > "WFLYCTL0180: Services with missing/unavailable dependencies" => undefined > }, > "rolled-back" => true > } > {noformat} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 10 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2403) CS tool, omitting required param leads to NPE

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2403?page=com.atlassian.jira.plugi... ] Darran Lofthouse resolved WFCORE-2403. -------------------------------------- Fix Version/s: 3.0.0.Beta29 Resolution: Done > CS tool, omitting required param leads to NPE > --------------------------------------------- > > Key: WFCORE-2403 > URL: https://issues.jboss.org/browse/WFCORE-2403 > Project: WildFly Core > Issue Type: Bug > Components: Security > Reporter: Martin Choma > Assignee: Darran Lofthouse > Priority: Blocker > Labels: credential-store > Fix For: 3.0.0.Beta29 > > > Omitting required param leads to NPE, e.g. when adding alias without password (-p --password) > {code} > java -jar wildfly-elytron-tool.jar credential-store -a test_alis -x admin123 -c -u "cr-store://store-test-1?create=true" -salt 12345678 --iteration 230 > Exception in thread "main" java.lang.NullPointerException > at java.util.regex.Matcher.getTextLength(Matcher.java:1283) > at java.util.regex.Matcher.reset(Matcher.java:309) > at java.util.regex.Matcher.<init>(Matcher.java:229) > at java.util.regex.Pattern.matcher(Pattern.java:1093) > at java.util.Formatter.parse(Formatter.java:2547) > at java.util.Formatter.format(Formatter.java:2501) > at java.io.PrintStream.format(PrintStream.java:970) > at java.io.PrintStream.printf(PrintStream.java:871) > at org.wildfly.security.tool.ElytronTool.main(ElytronTool.java:58) > {code} > Help does not document required options. If required option is ommited user is not informed about which parameter is missing. So effectivelly user have no way to find out required parameters. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 10 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2405) Credential store file isn't created when we add there new entry in embed-server mode.

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2405?page=com.atlassian.jira.plugi... ] Darran Lofthouse resolved WFCORE-2405. -------------------------------------- Fix Version/s: 3.0.0.Beta29 Resolution: Done > Credential store file isn't created when we add there new entry in embed-server mode. > ------------------------------------------------------------------------------------- > > Key: WFCORE-2405 > URL: https://issues.jboss.org/browse/WFCORE-2405 > Project: WildFly Core > Issue Type: Bug > Components: Security > Reporter: Hynek Švábek > Assignee: Darran Lofthouse > Fix For: 3.0.0.Beta29 > > > Credential store file isn't created when we add there new entry in embed-server mode. > * ./bin/jboss-cli.sh > * embed-server > * /subsystem=elytron/credential-store=store001:add(uri="cr-store://test/store001.jceks?create=true", credential-reference={clear-text=pass123}) > * /subsystem=elytron/credential-store=store001/alias=alias001:add(secret-value=secretValue) > store001.jceks file should be created in JBOSS_HOME directory, but it doesn't. > When I stop embedded server and start standalone server everything work fine. > * stop-embedded-server > * ./bin/standalone.sh > * connect > * /subsystem=elytron/credential-store=store001/alias=alias001:add(secret-value=secretValue) > store001.jceks file is correctly created in JBOSS_HOME directory. > *NOTE:* > When I copy there store001.jceks file to JBOSS_HOME directory with same password to access as expected then entry is added correctly. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 10 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2407) ReAuth does not work with Elytron

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2407?page=com.atlassian.jira.plugi... ] Darran Lofthouse resolved WFCORE-2407. -------------------------------------- Resolution: Out of Date > ReAuth does not work with Elytron > --------------------------------- > > Key: WFCORE-2407 > URL: https://issues.jboss.org/browse/WFCORE-2407 > Project: WildFly Core > Issue Type: Bug > Components: Security > Reporter: Jan Kalina > Assignee: Darran Lofthouse > Labels: elytron-legacy-test-fails > > Following way of change identity from servlet does not work: > {code:java} > LoginContext lc = getCLMLoginContext(username, password); > lc.login(); > {code} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 10 months

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira July 2017