June 2020 - jboss-jira - Jboss List Archives

[JBoss JIRA] (ELY-1976) Elytron provider not being used with credential store and SASL authentication on the Client Side

by Farah Juma (Jira)

[ https://issues.redhat.com/browse/ELY-1976?page=com.atlassian.jira.plugin.... ] Farah Juma updated ELY-1976: ---------------------------- Fix Version/s: 1.13.0.CR1 > Elytron provider not being used with credential store and SASL authentication on the Client Side > ------------------------------------------------------------------------------------------------ > > Key: ELY-1976 > URL: https://issues.redhat.com/browse/ELY-1976 > Project: WildFly Elytron > Issue Type: Bug > Components: Authentication Client > Reporter: Sonia Zaldana > Assignee: Sonia Zaldana > Priority: Major > Fix For: 1.13.0.CR1 > > > Trying to configure an ejb client with Sasl authentication using a credential store causes an "Invalid algorithm clear" error as follows: > {code:java} > Suppressed: javax.security.sasl.SaslException: ELY05053: Callback handler failed for unknown reason [Caused by java.io.IOException: ELY01030: Unable to read credential] > at org.wildfly.security.mechanism._private.MechanismUtil.handleCallbacks(MechanismUtil.java:160) > at org.wildfly.security.mechanism._private.MechanismUtil.getPasswordCredential(MechanismUtil.java:102) > at org.wildfly.security.mechanism.scram.ScramClient.handleInitialChallenge(ScramClient.java:245) > at org.wildfly.security.sasl.scram.ScramSaslClient.evaluateMessage(ScramSaslClient.java:75) > at org.wildfly.security.sasl.util.AbstractSaslParticipant.evaluateMessage(AbstractSaslParticipant.java:219) > at org.wildfly.security.sasl.util.AbstractSaslClient.evaluateChallenge(AbstractSaslClient.java:98) > at org.wildfly.security.sasl.util.AbstractDelegatingSaslClient.evaluateChallenge(AbstractDelegatingSaslClient.java:54) > at org.wildfly.security.sasl.util.PrivilegedSaslClient.lambda$evaluateChallenge$0(PrivilegedSaslClient.java:55) > at java.base/java.security.AccessController.doPrivileged(Native Method) > at org.wildfly.security.sasl.util.PrivilegedSaslClient.evaluateChallenge(PrivilegedSaslClient.java:55) > at org.jboss.remoting3.remote.ClientConnectionOpenListener$Authentication.lambda$handleEvent$0(ClientConnectionOpenListener.java:649) > at org.jboss.remoting3.EndpointImpl$TrackingExecutor.lambda$execute$0(EndpointImpl.java:991) > at org.jboss.threads.ContextClassLoaderSavingRunnable.run(ContextClassLoaderSavingRunnable.java:35) > at org.jboss.threads.EnhancedQueueExecutor.safeRun(EnhancedQueueExecutor.java:1982) > at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.doRunTask(EnhancedQueueExecutor.java:1486) > at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.run(EnhancedQueueExecutor.java:1377) > at java.base/java.lang.Thread.run(Thread.java:834) > Caused by: java.io.IOException: ELY01030: Unable to read credential > at org.wildfly.security.credential.source.impl.CredentialStoreCredentialSource.getCredential(CredentialStoreCredentialSource.java:92) > at org.wildfly.security.credential.source.CredentialSource$1.getCredential(CredentialSource.java:207) > at org.wildfly.security.auth.client.AuthenticationConfiguration$ClientCallbackHandler.handle(AuthenticationConfiguration.java:1841) > at org.wildfly.security.sasl.util.LocalPrincipalSaslClientFactory$ClientPrincipalQueryCallbackHandler.handle(LocalPrincipalSaslClientFactory.java:93) > at org.wildfly.security.mechanism._private.MechanismUtil.handleCallbacks(MechanismUtil.java:156) > ... 16 more > Caused by: org.wildfly.security.credential.store.CredentialStoreException: ELY09504: Cannot acquire a credential from the credential store > at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.retrieve(KeyStoreCredentialStore.java:683) > at org.wildfly.security.credential.store.CredentialStore.retrieve(CredentialStore.java:303) > at org.wildfly.security.credential.store.CredentialStore.retrieve(CredentialStore.java:287) > at org.wildfly.security.credential.source.impl.CredentialStoreCredentialSource.getCredential(CredentialStoreCredentialSource.java:88) > ... 20 more > Caused by: java.security.NoSuchAlgorithmException: ELY08028: Invalid algorithm "clear" > at org.wildfly.security.password.PasswordFactory.getInstance(PasswordFactory.java:122) > at org.wildfly.security.password.PasswordFactory.getInstance(PasswordFactory.java:76) > at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.retrieve(KeyStoreCredentialStore.java:679) > ... 23 more > {code} > Here is my wildfly-config.xml where the credential-store-reference has been configured. > {code:java} > <configuration> > <authentication-client xmlns="urn:elytron:client:1.5"> > <credential-stores> > <credential-store name="mycredstore"> > <attributes> > <attribute name="keyStoreType" value="JCEKS"/> > <attribute name="location" value="/home/szcalles/Wildfly/wildfly/build/target/wildfly-20.0.0.Final-SNAPSHOT/standalone/configuration/mycredstore.cs"></attribute> > </attributes> > <protection-parameter-credentials> > <clear-password password="StorePassword"/> > </protection-parameter-credentials> > </credential-store> > </credential-stores> > <authentication-rules> > <rule use-configuration="default-config"/> > </authentication-rules> > <authentication-configurations> > <configuration name="default-config"> > <set-user-name name="quickstartUser"/> > <credentials> > <credential-store-reference store="mycredstore" alias="quickstartUser"/> > </credentials> > <sasl-mechanism-selector selector="SCRAM-SHA-512"/> > <providers> > <use-service-loader /> > </providers> > </configuration> > </authentication-configurations> > </authentication-client> > </configuration> > {code} > The provider configuration in wildfly-config.xml is specified correctly: > {code:java} > <providers> > <use-service-loader /> > </providers> > {code} > The problem seems to be in PasswordFactory.getInstance() in KeyStoreCredentialStore where we aren't setting the providers we have configured. Instead, it seems to use INSTALLED_PROVIDERS which does not have the Elytron providers. -- This message was sent by Atlassian Jira (v7.13.8#713008)

4 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ELY-1976) Elytron provider not being used with credential store and SASL authentication on the Client Side

by Farah Juma (Jira)

[ https://issues.redhat.com/browse/ELY-1976?page=com.atlassian.jira.plugin.... ] Farah Juma resolved ELY-1976. ----------------------------- Resolution: Done > Elytron provider not being used with credential store and SASL authentication on the Client Side > ------------------------------------------------------------------------------------------------ > > Key: ELY-1976 > URL: https://issues.redhat.com/browse/ELY-1976 > Project: WildFly Elytron > Issue Type: Bug > Components: Authentication Client > Reporter: Sonia Zaldana > Assignee: Sonia Zaldana > Priority: Major > Fix For: 1.13.0.CR1 > > > Trying to configure an ejb client with Sasl authentication using a credential store causes an "Invalid algorithm clear" error as follows: > {code:java} > Suppressed: javax.security.sasl.SaslException: ELY05053: Callback handler failed for unknown reason [Caused by java.io.IOException: ELY01030: Unable to read credential] > at org.wildfly.security.mechanism._private.MechanismUtil.handleCallbacks(MechanismUtil.java:160) > at org.wildfly.security.mechanism._private.MechanismUtil.getPasswordCredential(MechanismUtil.java:102) > at org.wildfly.security.mechanism.scram.ScramClient.handleInitialChallenge(ScramClient.java:245) > at org.wildfly.security.sasl.scram.ScramSaslClient.evaluateMessage(ScramSaslClient.java:75) > at org.wildfly.security.sasl.util.AbstractSaslParticipant.evaluateMessage(AbstractSaslParticipant.java:219) > at org.wildfly.security.sasl.util.AbstractSaslClient.evaluateChallenge(AbstractSaslClient.java:98) > at org.wildfly.security.sasl.util.AbstractDelegatingSaslClient.evaluateChallenge(AbstractDelegatingSaslClient.java:54) > at org.wildfly.security.sasl.util.PrivilegedSaslClient.lambda$evaluateChallenge$0(PrivilegedSaslClient.java:55) > at java.base/java.security.AccessController.doPrivileged(Native Method) > at org.wildfly.security.sasl.util.PrivilegedSaslClient.evaluateChallenge(PrivilegedSaslClient.java:55) > at org.jboss.remoting3.remote.ClientConnectionOpenListener$Authentication.lambda$handleEvent$0(ClientConnectionOpenListener.java:649) > at org.jboss.remoting3.EndpointImpl$TrackingExecutor.lambda$execute$0(EndpointImpl.java:991) > at org.jboss.threads.ContextClassLoaderSavingRunnable.run(ContextClassLoaderSavingRunnable.java:35) > at org.jboss.threads.EnhancedQueueExecutor.safeRun(EnhancedQueueExecutor.java:1982) > at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.doRunTask(EnhancedQueueExecutor.java:1486) > at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.run(EnhancedQueueExecutor.java:1377) > at java.base/java.lang.Thread.run(Thread.java:834) > Caused by: java.io.IOException: ELY01030: Unable to read credential > at org.wildfly.security.credential.source.impl.CredentialStoreCredentialSource.getCredential(CredentialStoreCredentialSource.java:92) > at org.wildfly.security.credential.source.CredentialSource$1.getCredential(CredentialSource.java:207) > at org.wildfly.security.auth.client.AuthenticationConfiguration$ClientCallbackHandler.handle(AuthenticationConfiguration.java:1841) > at org.wildfly.security.sasl.util.LocalPrincipalSaslClientFactory$ClientPrincipalQueryCallbackHandler.handle(LocalPrincipalSaslClientFactory.java:93) > at org.wildfly.security.mechanism._private.MechanismUtil.handleCallbacks(MechanismUtil.java:156) > ... 16 more > Caused by: org.wildfly.security.credential.store.CredentialStoreException: ELY09504: Cannot acquire a credential from the credential store > at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.retrieve(KeyStoreCredentialStore.java:683) > at org.wildfly.security.credential.store.CredentialStore.retrieve(CredentialStore.java:303) > at org.wildfly.security.credential.store.CredentialStore.retrieve(CredentialStore.java:287) > at org.wildfly.security.credential.source.impl.CredentialStoreCredentialSource.getCredential(CredentialStoreCredentialSource.java:88) > ... 20 more > Caused by: java.security.NoSuchAlgorithmException: ELY08028: Invalid algorithm "clear" > at org.wildfly.security.password.PasswordFactory.getInstance(PasswordFactory.java:122) > at org.wildfly.security.password.PasswordFactory.getInstance(PasswordFactory.java:76) > at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.retrieve(KeyStoreCredentialStore.java:679) > ... 23 more > {code} > Here is my wildfly-config.xml where the credential-store-reference has been configured. > {code:java} > <configuration> > <authentication-client xmlns="urn:elytron:client:1.5"> > <credential-stores> > <credential-store name="mycredstore"> > <attributes> > <attribute name="keyStoreType" value="JCEKS"/> > <attribute name="location" value="/home/szcalles/Wildfly/wildfly/build/target/wildfly-20.0.0.Final-SNAPSHOT/standalone/configuration/mycredstore.cs"></attribute> > </attributes> > <protection-parameter-credentials> > <clear-password password="StorePassword"/> > </protection-parameter-credentials> > </credential-store> > </credential-stores> > <authentication-rules> > <rule use-configuration="default-config"/> > </authentication-rules> > <authentication-configurations> > <configuration name="default-config"> > <set-user-name name="quickstartUser"/> > <credentials> > <credential-store-reference store="mycredstore" alias="quickstartUser"/> > </credentials> > <sasl-mechanism-selector selector="SCRAM-SHA-512"/> > <providers> > <use-service-loader /> > </providers> > </configuration> > </authentication-configurations> > </authentication-client> > </configuration> > {code} > The provider configuration in wildfly-config.xml is specified correctly: > {code:java} > <providers> > <use-service-loader /> > </providers> > {code} > The problem seems to be in PasswordFactory.getInstance() in KeyStoreCredentialStore where we aren't setting the providers we have configured. Instead, it seems to use INSTALLED_PROVIDERS which does not have the Elytron providers. -- This message was sent by Atlassian Jira (v7.13.8#713008)

4 years, 7 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-5001) Upgrade WildFly Elytron to 1.13.0.CR1

by Farah Juma (Jira)

Farah Juma created WFCORE-5001: ---------------------------------- Summary: Upgrade WildFly Elytron to 1.13.0.CR1 Key: WFCORE-5001 URL: https://issues.redhat.com/browse/WFCORE-5001 Project: WildFly Core Issue Type: Component Upgrade Components: Security Reporter: Farah Juma Assignee: Farah Juma -- This message was sent by Atlassian Jira (v7.13.8#713008)

4 years, 7 months

1
0
0 / 0

[JBoss JIRA] (ELY-1993) Release WildFly Elytron 1.13.0.CR1

by Farah Juma (Jira)

Farah Juma created ELY-1993: ------------------------------- Summary: Release WildFly Elytron 1.13.0.CR1 Key: ELY-1993 URL: https://issues.redhat.com/browse/ELY-1993 Project: WildFly Elytron Issue Type: Release Reporter: Farah Juma Assignee: Farah Juma Fix For: 1.13.0.CR1 -- This message was sent by Atlassian Jira (v7.13.8#713008)

4 years, 7 months

1
0
0 / 0

[JBoss JIRA] (DROOLS-5426) Code completion with C3 for FEEL

by Toni Rikkola (Jira)

Toni Rikkola created DROOLS-5426: ------------------------------------ Summary: Code completion with C3 for FEEL Key: DROOLS-5426 URL: https://issues.redhat.com/browse/DROOLS-5426 Project: Drools Issue Type: Feature Request Reporter: Toni Rikkola Assignee: Toni Rikkola -- This message was sent by Atlassian Jira (v7.13.8#713008)

4 years, 7 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-4999) Remove Zanata configuration

by James Perkins (Jira)

James Perkins created WFCORE-4999: ------------------------------------- Summary: Remove Zanata configuration Key: WFCORE-4999 URL: https://issues.redhat.com/browse/WFCORE-4999 Project: WildFly Core Issue Type: Task Components: Build System Reporter: James Perkins Assignee: James Perkins Zanata is no longer used for internationalizing files. The configurations should be removed as there is no need for it. -- This message was sent by Atlassian Jira (v7.13.8#713008)

4 years, 7 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-5000) Remove Zanata configuration

by James Perkins (Jira)

James Perkins created WFCORE-5000: ------------------------------------- Summary: Remove Zanata configuration Key: WFCORE-5000 URL: https://issues.redhat.com/browse/WFCORE-5000 Project: WildFly Core Issue Type: Task Components: Build System Reporter: James Perkins Assignee: James Perkins Zanata is no longer used for internationalizing files. The configurations should be removed as there is no need for it. -- This message was sent by Atlassian Jira (v7.13.8#713008)

4 years, 7 months

1
0
0 / 0

[JBoss JIRA] (WFLY-13583) Remove Zanata configuration

by James Perkins (Jira)

[ https://issues.redhat.com/browse/WFLY-13583?page=com.atlassian.jira.plugi... ] James Perkins moved WFCORE-5000 to WFLY-13583: ---------------------------------------------- Project: WildFly (was: WildFly Core) Key: WFLY-13583 (was: WFCORE-5000) Component/s: Build System (was: Build System) > Remove Zanata configuration > --------------------------- > > Key: WFLY-13583 > URL: https://issues.redhat.com/browse/WFLY-13583 > Project: WildFly > Issue Type: Task > Components: Build System > Reporter: James Perkins > Assignee: James Perkins > Priority: Minor > > Zanata is no longer used for internationalizing files. The configurations should be removed as there is no need for it. -- This message was sent by Atlassian Jira (v7.13.8#713008)

4 years, 7 months

1
0
0 / 0

[JBoss JIRA] (DROOLS-5384) Clicking rightmost column's header in DMN decision table raises an error

by Daniel José dos Santos (Jira)

[ https://issues.redhat.com/browse/DROOLS-5384?page=com.atlassian.jira.plug... ] Daniel José dos Santos reopened DROOLS-5384: -------------------------------------------- The issue was reproducible with the new information about how to reproduce. > Clicking rightmost column's header in DMN decision table raises an error > ------------------------------------------------------------------------ > > Key: DROOLS-5384 > URL: https://issues.redhat.com/browse/DROOLS-5384 > Project: Drools > Issue Type: Bug > Components: DMN Editor > Affects Versions: 7.38.0.Final > Reporter: Toshiya Kobayashi > Assignee: Daniel José dos Santos > Priority: Major > Labels: drools-tools > Fix For: 7.39.0.Final > > Attachments: dmn-decision-table-error-popup-7.38.0.png, drools5384.mp4 > > > When I import Traffic_Violation sample, opened a "Fine" decision table. The rightmost column's header is empty ("Enter Text") and I get an error pop-up when clicked. (At the first time, it raises an error popup. After that, the header is unresponsive) > See screenshot. > Chrome 80.0.3987.122 > Firefox 60.6.2 -- This message was sent by Atlassian Jira (v7.13.8#713008)

4 years, 7 months

1
0
0 / 0

[JBoss JIRA] (WFLY-13582) Mention sampler configuration in MP Opentracing Quickstart readme

by Jan Stourac (Jira)

Jan Stourac created WFLY-13582: ---------------------------------- Summary: Mention sampler configuration in MP Opentracing Quickstart readme Key: WFLY-13582 URL: https://issues.redhat.com/browse/WFLY-13582 Project: WildFly Issue Type: Bug Components: Quickstarts Affects Versions: 20.0.0.Final Reporter: Jan Stourac Assignee: Jan Stourac Since quickstart is usually used in non-production environment with low traffic, we should emphasize to user that to properly log requests into Jaeger tracer, we should alternate default tracing sampling in WildFly Jaeger client. -- This message was sent by Atlassian Jira (v7.13.8#713008)

4 years, 7 months

1
0
0 / 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira June 2020