[JBoss JIRA] (WFCORE-4395) The single mapper validation added via WFCORE-2364 happens at Runtime, this should be a Model time check.
by Darran Lofthouse (Jira)
[ https://issues.jboss.org/browse/WFCORE-4395?page=com.atlassian.jira.plugi... ]
Darran Lofthouse updated WFCORE-4395:
-------------------------------------
Fix Version/s: (was: 9.0.0.Beta8)
> The single mapper validation added via WFCORE-2364 happens at Runtime, this should be a Model time check.
> ---------------------------------------------------------------------------------------------------------
>
> Key: WFCORE-4395
> URL: https://issues.jboss.org/browse/WFCORE-4395
> Project: WildFly Core
> Issue Type: Bug
> Components: Security
> Reporter: Darran Lofthouse
> Priority: Major
>
> If possible the mappers should be flagged as being mutually exclusive, however failing that the validation should happen during Stage.MODEL.
> Presently this leads to an unsatisifed dependency: -
> {noformat}
> 14:21:59,055 ERROR [org.jboss.as.controller.management-operation] (Controller Boot Thread) WFLYCTL0013: Operation ("add") failed - address: ([
> ("subsystem" => "elytron"),
> ("security-domain" => "demon-domain")
> ]) - failure description: {
> "WFLYCTL0412: Required services that are not installed:" => ["org.wildfly.security.security-realm.demo-realm"],
> "WFLYCTL0180: Services with missing/unavailable dependencies" => ["org.wildfly.security.security-domain.demon-domain.initial is missing [org.wildfly.security.security-realm.demo-realm]"]
> }
> {noformat}
> Despite this error the underlying cause is not logged at any level.
--
This message was sent by Atlassian Jira
(v7.12.1#712002)
7 years, 1 month
[JBoss JIRA] (WFLY-10803) WildFly Single Sign On Documentation
by Darran Lofthouse (Jira)
[ https://issues.jboss.org/browse/WFLY-10803?page=com.atlassian.jira.plugin... ]
Darran Lofthouse reassigned WFLY-10803:
---------------------------------------
Assignee: (was: Darran Lofthouse)
> WildFly Single Sign On Documentation
> ------------------------------------
>
> Key: WFLY-10803
> URL: https://issues.jboss.org/browse/WFLY-10803
> Project: WildFly
> Issue Type: Task
> Components: Documentation, Security
> Environment: *
> Reporter: Darran Lofthouse
> Priority: Major
>
> Presently there are a lot of options for single sign on that can be used with the application server, it could be useful to pull all of these into a single document.
> * WildFly Clustering SSO
> * Kerberos
> * SAML
> * KeyCloak
> * OpenID Connect
> For anyone tasked with implementing "SSO" this should give enough information to select between the available options.
> From that point we should document how to implement each of these options possibly with further sub options identified.
--
This message was sent by Atlassian Jira
(v7.12.1#712002)
7 years, 1 month
[JBoss JIRA] (WFLY-10803) WildFly Single Sign On Documentation
by Darran Lofthouse (Jira)
[ https://issues.jboss.org/browse/WFLY-10803?page=com.atlassian.jira.plugin... ]
Darran Lofthouse updated WFLY-10803:
------------------------------------
Fix Version/s: (was: 17.0.0.Final)
> WildFly Single Sign On Documentation
> ------------------------------------
>
> Key: WFLY-10803
> URL: https://issues.jboss.org/browse/WFLY-10803
> Project: WildFly
> Issue Type: Task
> Components: Documentation, Security
> Environment: *
> Reporter: Darran Lofthouse
> Priority: Major
>
> Presently there are a lot of options for single sign on that can be used with the application server, it could be useful to pull all of these into a single document.
> * WildFly Clustering SSO
> * Kerberos
> * SAML
> * KeyCloak
> * OpenID Connect
> For anyone tasked with implementing "SSO" this should give enough information to select between the available options.
> From that point we should document how to implement each of these options possibly with further sub options identified.
--
This message was sent by Atlassian Jira
(v7.12.1#712002)
7 years, 1 month
[JBoss JIRA] (WFCORE-4501) Provide XML schema for credential-reference
by Darran Lofthouse (Jira)
[ https://issues.jboss.org/browse/WFCORE-4501?page=com.atlassian.jira.plugi... ]
Darran Lofthouse moved WFLY-10052 to WFCORE-4501:
-------------------------------------------------
Project: WildFly Core (was: WildFly)
Key: WFCORE-4501 (was: WFLY-10052)
Component/s: Management
Security
(was: JCA)
(was: JMS)
(was: Mail)
(was: Management)
(was: Security)
Target Release: (was: 7.2.0.GA)
> Provide XML schema for credential-reference
> -------------------------------------------
>
> Key: WFCORE-4501
> URL: https://issues.jboss.org/browse/WFCORE-4501
> Project: WildFly Core
> Issue Type: Enhancement
> Components: Management, Security
> Reporter: Jeff Mesnil
> Priority: Major
> Labels: credential-reference, eap72
> Fix For: 10.0.0.Beta1
>
>
> With https://issues.jboss.org/browse/EAP7-538, all passwords references in the subsystems must support credential references.
> The model attribute is provided by wildlfy-controller module (including its XML parser and marshaller) but the corresponding XML element has been added directly to the subsystems XML schemas. This will become a maintenance issue when/if the credential references has to be updated and all the subsystems schema risk to be out of sync with the actual code reading/writing the credential reference.
> We should follow the same design than for threads attributes (provided by the willdfly-threads module): the wildlfy-controller module provides a XML schema for the credential-references with its own versioned namespace and any subsystem that requires it will just refer to it.
--
This message was sent by Atlassian Jira
(v7.12.1#712002)
7 years, 1 month
[JBoss JIRA] (WFCORE-4501) Provide XML schema for credential-reference
by Darran Lofthouse (Jira)
[ https://issues.jboss.org/browse/WFCORE-4501?page=com.atlassian.jira.plugi... ]
Darran Lofthouse updated WFCORE-4501:
-------------------------------------
Fix Version/s: 10.0.0.Beta1
> Provide XML schema for credential-reference
> -------------------------------------------
>
> Key: WFCORE-4501
> URL: https://issues.jboss.org/browse/WFCORE-4501
> Project: WildFly Core
> Issue Type: Enhancement
> Components: Management, Security
> Reporter: Jeff Mesnil
> Priority: Major
> Labels: credential-reference, eap72
> Fix For: 10.0.0.Beta1
>
>
> With https://issues.jboss.org/browse/EAP7-538, all passwords references in the subsystems must support credential references.
> The model attribute is provided by wildlfy-controller module (including its XML parser and marshaller) but the corresponding XML element has been added directly to the subsystems XML schemas. This will become a maintenance issue when/if the credential references has to be updated and all the subsystems schema risk to be out of sync with the actual code reading/writing the credential reference.
> We should follow the same design than for threads attributes (provided by the willdfly-threads module): the wildlfy-controller module provides a XML schema for the credential-references with its own versioned namespace and any subsystem that requires it will just refer to it.
--
This message was sent by Atlassian Jira
(v7.12.1#712002)
7 years, 1 month