[JBoss JIRA] (ELY-677) Credential-reference(store=...) should be resolved in time of request.
by Farah Juma (JIRA)
[ https://issues.jboss.org/browse/ELY-677?page=com.atlassian.jira.plugin.sy... ]
Farah Juma resolved ELY-677.
----------------------------
Resolution: Out of Date
> Credential-reference(store=...) should be resolved in time of request.
> ----------------------------------------------------------------------
>
> Key: ELY-677
> URL: https://issues.jboss.org/browse/ELY-677
> Project: WildFly Elytron
> Issue Type: Bug
> Components: Credential Store
> Affects Versions: 1.1.0.Beta10
> Reporter: Hynek Švábek
> Attachments: firefly.keystore
>
>
> Credential-reference should be resolved in time of request.
> When you added KeyStore to Elytron subsystem which have credential-reference to non-exists credential store then you can see this error message
> {code}
> ERROR [org.jboss.as.controller.management-operation] (management-handler-thread - 8) WFLYCTL0013: Operation ("add") failed - address: ([
> ("subsystem" => "elytron"),
> ("key-store" => "firefly")
> ]) - failure description: {
> "WFLYCTL0412: Required services that are not installed:" => ["org.wildfly.security.credential-store-client.NonexistingCredentialStore"],
> "WFLYCTL0180: Services with missing/unavailable dependencies" => ["org.wildfly.security.key-store.firefly is missing [org.wildfly.security.credential-store-client.NonexistingCredentialStore]"]
> }
> {code}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
8 years, 10 months
[JBoss JIRA] (ELY-678) Credential-reference(alias=) should be resolved in time of request.
by Farah Juma (JIRA)
[ https://issues.jboss.org/browse/ELY-678?page=com.atlassian.jira.plugin.sy... ]
Farah Juma resolved ELY-678.
----------------------------
Resolution: Out of Date
Resolving this one since the corresponding JBEAP issue was resolved as out of date.
> Credential-reference(alias=) should be resolved in time of request.
> -------------------------------------------------------------------
>
> Key: ELY-678
> URL: https://issues.jboss.org/browse/ELY-678
> Project: WildFly Elytron
> Issue Type: Bug
> Components: Credential Store
> Affects Versions: 1.1.0.Beta10
> Reporter: Hynek Švábek
> Attachments: credentialstore.jceks, firefly.keystore
>
>
> Credential-reference should be resolved in time of request - in this case the alias which contains wrong password in CredentialStore (we can change it later to right password...).
> If I add credential reference with alias which contains wrong password then I get this error:
> {code}
> {
> "outcome" => "failed",
> "failure-description" => {
> "WFLYCTL0080: Failed services" => {"org.wildfly.security.key-store.fireflyWrong" => "org.jboss.msc.service.StartException in service org.wildfly.security.key-store.fireflyWrong: WFLYELY00004: Unable to start the service.
> Caused by: java.io.IOException: Keystore was tampered with, or password was incorrect
> Caused by: java.security.UnrecoverableKeyException: Password verification failed"},
> "WFLYCTL0412: Required services that are not installed:" => ["org.wildfly.security.key-store.fireflyWrong"],
> "WFLYCTL0180: Services with missing/unavailable dependencies" => undefined
> },
> "rolled-back" => true
> }
> {code}
> *When I reload server then same command pass!*
> But I nowhere got information about reload-required
> {code}
> /subsystem=elytron/key-store=fireflyWrong:add(path=cs/firefly.keystore,relative-to=jboss.server.data.dir,type=JKS,credential-reference= {store=credStore2,alias=ffWithWrongPass})
> {code}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
8 years, 10 months
[JBoss JIRA] (ELY-1119) Setting sasl-mechanism-selector with some name value in Elytron client configuration file causes NPE during parsing
by Farah Juma (JIRA)
[ https://issues.jboss.org/browse/ELY-1119?page=com.atlassian.jira.plugin.s... ]
Farah Juma updated ELY-1119:
----------------------------
Fix Version/s: 1.1.0.Beta41
> Setting sasl-mechanism-selector with some name value in Elytron client configuration file causes NPE during parsing
> -------------------------------------------------------------------------------------------------------------------
>
> Key: ELY-1119
> URL: https://issues.jboss.org/browse/ELY-1119
> Project: WildFly Elytron
> Issue Type: Bug
> Components: Authentication Client
> Affects Versions: 1.1.0.Beta39
> Reporter: Ondrej Lukas
> Priority: Critical
> Fix For: 1.1.0.Beta41
>
>
> In case when sasl-mechanism-selector is set in Elytron client configuration file then parsing of configuration file throws NPE. For following element (since there is no documentation then I tried to use values "someName", "NONE", "PLAIN" instead of someName):
> {code}
> <sasl-mechanism-selector selector="someName"/>
> {code}
> is following NPE thrown:
> {code}
> ERROR [io.undertow.request] (default task-3) UT005023: Exception handling request to /dep/authenticationContext: java.lang.NullPointerException
> at org.wildfly.security.sasl.SaslMechanismSelector$AddSelector.addHashCode(SaslMechanismSelector.java:768)
> at org.wildfly.security.sasl.SaslMechanismSelector.hashCode(SaslMechanismSelector.java:177)
> at org.wildfly.security.sasl.SaslMechanismSelector.equals(SaslMechanismSelector.java:188)
> at org.wildfly.security.sasl.SaslMechanismSelector.equals(SaslMechanismSelector.java:184)
> at java.util.Objects.equals(Objects.java:59)
> at org.wildfly.security.auth.client.AuthenticationConfiguration.setSaslMechanismSelector(AuthenticationConfiguration.java:1037)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$parseAuthenticationConfigurationType$18(ElytronXmlParser.java:640)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$andThenOp$27(ElytronXmlParser.java:832)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$andThenOp$27(ElytronXmlParser.java:832)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$andThenOp$27(ElytronXmlParser.java:832)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$andThenOp$27(ElytronXmlParser.java:832)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$parseAuthenticationConfigurationType$25(ElytronXmlParser.java:704)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$parseAuthenticationRuleType$7(ElytronXmlParser.java:513)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$parseRulesType$8(ElytronXmlParser.java:537)
> at org.wildfly.security.auth.client.ElytronXmlParser.parseAuthenticationClientType(ElytronXmlParser.java:308)
> at org.wildfly.security.auth.client.ElytronXmlParser.parseAuthenticationClientConfiguration(ElytronXmlParser.java:180)
> at org.wildfly.security.auth.client.ElytronXmlParser.parseAuthenticationClientConfiguration(ElytronXmlParser.java:141)
> at com.redhat.eap.qe.elytron.authnctx.WildflyConfigXmlServlet.parseAndCreateAuthenticationClientConfiguration(WildflyConfigXmlServlet.java:116)
> at com.redhat.eap.qe.elytron.authnctx.WildflyConfigXmlServlet.doGet(WildflyConfigXmlServlet.java:91)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:687)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)
> at io.undertow.servlet.handlers.ServletHandler.handleRequest(ServletHandler.java:85)
> at io.undertow.servlet.handlers.security.ServletSecurityRoleHandler.handleRequest(ServletSecurityRoleHandler.java:62)
> at io.undertow.servlet.handlers.ServletDispatchingHandler.handleRequest(ServletDispatchingHandler.java:36)
> at org.wildfly.extension.undertow.security.SecurityContextAssociationHandler.handleRequest(SecurityContextAssociationHandler.java:78)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at io.undertow.servlet.handlers.security.SSLInformationAssociationHandler.handleRequest(SSLInformationAssociationHandler.java:131)
> at io.undertow.servlet.handlers.security.ServletAuthenticationCallHandler.handleRequest(ServletAuthenticationCallHandler.java:57)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at io.undertow.security.handlers.AbstractConfidentialityHandler.handleRequest(AbstractConfidentialityHandler.java:46)
> at io.undertow.servlet.handlers.security.ServletConfidentialityConstraintHandler.handleRequest(ServletConfidentialityConstraintHandler.java:64)
> at io.undertow.security.handlers.AuthenticationMechanismsHandler.handleRequest(AuthenticationMechanismsHandler.java:60)
> at io.undertow.servlet.handlers.security.CachedAuthenticatedSessionHandler.handleRequest(CachedAuthenticatedSessionHandler.java:77)
> at io.undertow.security.handlers.NotificationReceiverHandler.handleRequest(NotificationReceiverHandler.java:50)
> at io.undertow.security.handlers.AbstractSecurityContextAssociationHandler.handleRequest(AbstractSecurityContextAssociationHandler.java:43)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at org.wildfly.extension.undertow.security.jacc.JACCContextIdHandler.handleRequest(JACCContextIdHandler.java:61)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at org.wildfly.extension.undertow.deployment.GlobalRequestControllerHandler.handleRequest(GlobalRequestControllerHandler.java:68)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:292)
> at io.undertow.servlet.handlers.ServletInitialHandler.access$100(ServletInitialHandler.java:81)
> at io.undertow.servlet.handlers.ServletInitialHandler$2.call(ServletInitialHandler.java:138)
> at io.undertow.servlet.handlers.ServletInitialHandler$2.call(ServletInitialHandler.java:135)
> at io.undertow.servlet.core.ServletRequestContextThreadSetupAction$1.call(ServletRequestContextThreadSetupAction.java:48)
> at io.undertow.servlet.core.ContextClassLoaderSetupAction$1.call(ContextClassLoaderSetupAction.java:43)
> at org.wildfly.extension.undertow.security.SecurityContextThreadSetupAction.lambda$create$0(SecurityContextThreadSetupAction.java:105)
> at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1704)
> at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1704)
> at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1704)
> at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1704)
> at io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:272)
> at io.undertow.servlet.handlers.ServletInitialHandler.access$000(ServletInitialHandler.java:81)
> at io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:104)
> at io.undertow.server.Connectors.executeRootHandler(Connectors.java:211)
> at io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:809)
> at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
> at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
> at java.lang.Thread.run(Thread.java:745)
> {code}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
8 years, 10 months
[JBoss JIRA] (ELY-1119) Setting sasl-mechanism-selector with some name value in Elytron client configuration file causes NPE during parsing
by Farah Juma (JIRA)
[ https://issues.jboss.org/browse/ELY-1119?page=com.atlassian.jira.plugin.s... ]
Farah Juma resolved ELY-1119.
-----------------------------
Resolution: Duplicate Issue
> Setting sasl-mechanism-selector with some name value in Elytron client configuration file causes NPE during parsing
> -------------------------------------------------------------------------------------------------------------------
>
> Key: ELY-1119
> URL: https://issues.jboss.org/browse/ELY-1119
> Project: WildFly Elytron
> Issue Type: Bug
> Components: Authentication Client
> Affects Versions: 1.1.0.Beta39
> Reporter: Ondrej Lukas
> Priority: Critical
>
> In case when sasl-mechanism-selector is set in Elytron client configuration file then parsing of configuration file throws NPE. For following element (since there is no documentation then I tried to use values "someName", "NONE", "PLAIN" instead of someName):
> {code}
> <sasl-mechanism-selector selector="someName"/>
> {code}
> is following NPE thrown:
> {code}
> ERROR [io.undertow.request] (default task-3) UT005023: Exception handling request to /dep/authenticationContext: java.lang.NullPointerException
> at org.wildfly.security.sasl.SaslMechanismSelector$AddSelector.addHashCode(SaslMechanismSelector.java:768)
> at org.wildfly.security.sasl.SaslMechanismSelector.hashCode(SaslMechanismSelector.java:177)
> at org.wildfly.security.sasl.SaslMechanismSelector.equals(SaslMechanismSelector.java:188)
> at org.wildfly.security.sasl.SaslMechanismSelector.equals(SaslMechanismSelector.java:184)
> at java.util.Objects.equals(Objects.java:59)
> at org.wildfly.security.auth.client.AuthenticationConfiguration.setSaslMechanismSelector(AuthenticationConfiguration.java:1037)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$parseAuthenticationConfigurationType$18(ElytronXmlParser.java:640)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$andThenOp$27(ElytronXmlParser.java:832)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$andThenOp$27(ElytronXmlParser.java:832)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$andThenOp$27(ElytronXmlParser.java:832)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$andThenOp$27(ElytronXmlParser.java:832)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$parseAuthenticationConfigurationType$25(ElytronXmlParser.java:704)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$parseAuthenticationRuleType$7(ElytronXmlParser.java:513)
> at org.wildfly.security.auth.client.ElytronXmlParser.lambda$parseRulesType$8(ElytronXmlParser.java:537)
> at org.wildfly.security.auth.client.ElytronXmlParser.parseAuthenticationClientType(ElytronXmlParser.java:308)
> at org.wildfly.security.auth.client.ElytronXmlParser.parseAuthenticationClientConfiguration(ElytronXmlParser.java:180)
> at org.wildfly.security.auth.client.ElytronXmlParser.parseAuthenticationClientConfiguration(ElytronXmlParser.java:141)
> at com.redhat.eap.qe.elytron.authnctx.WildflyConfigXmlServlet.parseAndCreateAuthenticationClientConfiguration(WildflyConfigXmlServlet.java:116)
> at com.redhat.eap.qe.elytron.authnctx.WildflyConfigXmlServlet.doGet(WildflyConfigXmlServlet.java:91)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:687)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)
> at io.undertow.servlet.handlers.ServletHandler.handleRequest(ServletHandler.java:85)
> at io.undertow.servlet.handlers.security.ServletSecurityRoleHandler.handleRequest(ServletSecurityRoleHandler.java:62)
> at io.undertow.servlet.handlers.ServletDispatchingHandler.handleRequest(ServletDispatchingHandler.java:36)
> at org.wildfly.extension.undertow.security.SecurityContextAssociationHandler.handleRequest(SecurityContextAssociationHandler.java:78)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at io.undertow.servlet.handlers.security.SSLInformationAssociationHandler.handleRequest(SSLInformationAssociationHandler.java:131)
> at io.undertow.servlet.handlers.security.ServletAuthenticationCallHandler.handleRequest(ServletAuthenticationCallHandler.java:57)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at io.undertow.security.handlers.AbstractConfidentialityHandler.handleRequest(AbstractConfidentialityHandler.java:46)
> at io.undertow.servlet.handlers.security.ServletConfidentialityConstraintHandler.handleRequest(ServletConfidentialityConstraintHandler.java:64)
> at io.undertow.security.handlers.AuthenticationMechanismsHandler.handleRequest(AuthenticationMechanismsHandler.java:60)
> at io.undertow.servlet.handlers.security.CachedAuthenticatedSessionHandler.handleRequest(CachedAuthenticatedSessionHandler.java:77)
> at io.undertow.security.handlers.NotificationReceiverHandler.handleRequest(NotificationReceiverHandler.java:50)
> at io.undertow.security.handlers.AbstractSecurityContextAssociationHandler.handleRequest(AbstractSecurityContextAssociationHandler.java:43)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at org.wildfly.extension.undertow.security.jacc.JACCContextIdHandler.handleRequest(JACCContextIdHandler.java:61)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at org.wildfly.extension.undertow.deployment.GlobalRequestControllerHandler.handleRequest(GlobalRequestControllerHandler.java:68)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:292)
> at io.undertow.servlet.handlers.ServletInitialHandler.access$100(ServletInitialHandler.java:81)
> at io.undertow.servlet.handlers.ServletInitialHandler$2.call(ServletInitialHandler.java:138)
> at io.undertow.servlet.handlers.ServletInitialHandler$2.call(ServletInitialHandler.java:135)
> at io.undertow.servlet.core.ServletRequestContextThreadSetupAction$1.call(ServletRequestContextThreadSetupAction.java:48)
> at io.undertow.servlet.core.ContextClassLoaderSetupAction$1.call(ContextClassLoaderSetupAction.java:43)
> at org.wildfly.extension.undertow.security.SecurityContextThreadSetupAction.lambda$create$0(SecurityContextThreadSetupAction.java:105)
> at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1704)
> at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1704)
> at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1704)
> at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1704)
> at io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:272)
> at io.undertow.servlet.handlers.ServletInitialHandler.access$000(ServletInitialHandler.java:81)
> at io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:104)
> at io.undertow.server.Connectors.executeRootHandler(Connectors.java:211)
> at io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:809)
> at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
> at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
> at java.lang.Thread.run(Thread.java:745)
> {code}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
8 years, 10 months
[JBoss JIRA] (ELY-1159) Windows delimiter '\' cannot be used in any path in Elytron client configuration file
by Farah Juma (JIRA)
[ https://issues.jboss.org/browse/ELY-1159?page=com.atlassian.jira.plugin.s... ]
Farah Juma resolved ELY-1159.
-----------------------------
Fix Version/s: 1.1.0.CR1
Resolution: Done
> Windows delimiter '\' cannot be used in any path in Elytron client configuration file
> -------------------------------------------------------------------------------------
>
> Key: ELY-1159
> URL: https://issues.jboss.org/browse/ELY-1159
> Project: WildFly Elytron
> Issue Type: Bug
> Affects Versions: 1.1.0.Beta42
> Reporter: Ondrej Lukas
> Priority: Critical
> Fix For: 1.1.0.CR1
>
>
> When Elytron client configuration file includes some path (e.g. for keystore) with Windows delimiter '\' then this path cannot be parsed. When Windows delimiter '\' is replaced by linux delimiter '/' then resource on given path can be loaded correctly. That means it is user experience issue since common Windows path cannot be used in Elytron client configuration file, but wokraround (using '/') is simple.
> None of following types of path work:
> {code}
> C:\some\path\to\client.truststore
> C:\\some\\path\\to\\client.truststore
> {code}
> Following type of path works on Windows correctly:
> {code}
> C:/some/path/to/client.truststore
> {code}
> Following exception is thrown when '\' is used in Elytron client configuration file (the same exception is thrown when '\' is escaped in path):
> {code}
> org.wildfly.client.config.ConfigXMLParseException: CONF0020: Failed to parse expression value of attribute "name"
> at vfs:/W:/workspace/eap-7x-security-elytron-testsuite-windows/f43f9016/tests-security/elytron/content/wildfly-config-xml-dep.war/META-INF/wildfly-config.xml:18:1
> at org.wildfly.client.config.ConfigurationXMLStreamReader.getExpressionAttributeValue(ConfigurationXMLStreamReader.java:685)
> at org.wildfly.client.config.ConfigurationXMLStreamReader.getAttributeValueResolved(ConfigurationXMLStreamReader.java:330)
> at org.wildfly.security.auth.client.ElytronXmlParser.parseNameType(ElytronXmlParser.java:1697)
> at org.wildfly.security.auth.client.ElytronXmlParser.parseNameType(ElytronXmlParser.java:1680)
> at org.wildfly.security.auth.client.ElytronXmlParser.parseKeyStoreType(ElytronXmlParser.java:1225)
> at org.wildfly.security.auth.client.ElytronXmlParser.parseKeyStoresType(ElytronXmlParser.java:1113)
> at org.wildfly.security.auth.client.ElytronXmlParser.parseAuthenticationClientType(ElytronXmlParser.java:279)
> at org.wildfly.security.auth.client.ElytronXmlParser.parseAuthenticationClientConfiguration(ElytronXmlParser.java:180)
> at org.wildfly.security.auth.client.ElytronXmlParser.parseAuthenticationClientConfiguration(ElytronXmlParser.java:141)
> at com.redhat.eap.qe.elytron.authnctx.WildflyConfigXmlServlet.parseAndCreateAuthenticationClientConfiguration(WildflyConfigXmlServlet.java:116)
> ... 41 more
> Caused by: java.lang.IllegalArgumentException: COM00009: Invalid expression syntax at position 2
> W:\workspace\eap-7x-security-elytron-testsuite-windows\f43f9016\tests-security\elytron\target\client.keystore
> ^
> at org.wildfly.common.expression.Expression.invalidExpressionSyntax(Expression.java:654)
> at org.wildfly.common.expression.Expression.parseString(Expression.java:610)
> at org.wildfly.common.expression.Expression.compile(Expression.java:203)
> at org.wildfly.common.expression.Expression.compile(Expression.java:183)
> at org.wildfly.client.config.ConfigurationXMLStreamReader.getExpressionAttributeValue(ConfigurationXMLStreamReader.java:683)
> ... 50 more
> {code}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
8 years, 10 months
[JBoss JIRA] (ELY-1174) set-authorization-name does not work with set-anonymous for Elytron client
by Farah Juma (JIRA)
[ https://issues.jboss.org/browse/ELY-1174?page=com.atlassian.jira.plugin.s... ]
Farah Juma resolved ELY-1174.
-----------------------------
Resolution: Rejected
Resolving this one since the corresponding JBEAP issue was resolved as rejected.
> set-authorization-name does not work with set-anonymous for Elytron client
> --------------------------------------------------------------------------
>
> Key: ELY-1174
> URL: https://issues.jboss.org/browse/ELY-1174
> Project: WildFly Elytron
> Issue Type: Bug
> Reporter: Ondrej Lukas
> Priority: Critical
>
> When {{set-anonymous}} is configured for authentication-configuration of Elytron client configuration file and this configuration includes {{set-authorization-name}} then authorization identity has name {{anonymous}}. Value of {{set-authorization-name}} should be used for authorization identity.
> In case element {{set-anonymous}} is changed to {{set-user-name}} then it works as expected (authorization identity is assigned based on {{set-authorization-name}}).
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
8 years, 10 months
[JBoss JIRA] (ELY-718) Problems with creating CredentialStore from scratch when directory path doesn't exist.
by Farah Juma (JIRA)
[ https://issues.jboss.org/browse/ELY-718?page=com.atlassian.jira.plugin.sy... ]
Farah Juma resolved ELY-718.
----------------------------
Fix Version/s: 1.1.0.CR2
Resolution: Done
> Problems with creating CredentialStore from scratch when directory path doesn't exist.
> --------------------------------------------------------------------------------------
>
> Key: ELY-718
> URL: https://issues.jboss.org/browse/ELY-718
> Project: WildFly Elytron
> Issue Type: Bug
> Reporter: Hynek Švábek
> Priority: Critical
> Fix For: 1.1.0.CR2
>
>
> There are problems with creating CredentialStore from scratch when directory path doesn't exist.
> *How to reproduce*
> * /subsystem=elytron/credential-store=cs007:add(uri="cr-store://test/folderNotExist/keystorecs007.jceks?store.password=pass123;create.storage=true")
> * /subsystem=elytron/credential-store=cs007/alias=newCs007:add(secret-value=Elytron)
> *You can see this error message*
> {code}
> {
> "outcome" => "failed",
> "failure-description" => "WFLYELY00009: Unable to complete operation. 'ELY09504: Cannot write storage file '/home/hsvabek/securityworkspace/AAA_prezentace/jboss-eap-7.1.0.DR7/standalone/data/folderNotExist/keystorecs007.jceks' for the store 'cs007''",
> "rolled-back" => true
> }
> {code}
> When you execute repeatedly last command /subsystem=elytron/credential-store=cs007/alias=newCs007:add(secret-value=Elytron)
> you get information about duplicate resource. It's mean the entry is in Credential Store (in memory) but not in file...
> {code}
> {
> "outcome" => "failed",
> "failure-description" => "WFLYCTL0212: Duplicate resource [
> (\"subsystem\" => \"elytron\"),
> (\"credential-store\" => \"cs123\"),
> (\"alias\" => \"newCs007\")
> ]",
> "rolled-back" => true
> }
> {code}
> *My suggestion solutions of this two problems:*
> * try to create directory path
> * when fails creating of CredentialStore file then we remove entry from memory too. It can be confusing have entry only in memory.
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
8 years, 10 months