Ondrej Lukas created ELY-1271: --------------------------------- Summary: Elytron server-ssl-context does not use default value when referenced security-domain cannot be used Key: ELY-1271 URL: https://issues.jboss.org/browse/ELY-1271 Project: WildFly Elytron Issue Type: Bug Reporter: Ondrej Lukas Assignee: Darran Lofthouse Priority: Critical When {{security-domain}} from {{server-ssl-context}} cannot verify {{X509PeerCertificateChainEvidence}} then {{server-ssl-context}} should rather fail then use some default for {{X509TrustManager}} in [1]. It causes that misconfiguration in security domain is masked. [1] https://github.com/wildfly-security/wildfly-elytron/blob/656354343e7e28fd... -- This message was sent by Atlassian JIRA (v7.2.3#72005)