Hynek Švábek created WFLY-7432: ---------------------------------- Summary: KeyStore requires set CredentialReference which is optional. Key: WFLY-7432 URL: https://issues.jboss.org/browse/WFLY-7432 Project: WildFly Issue Type: Bug Components: Security Reporter: Hynek Švábek Assignee: Darran Lofthouse In EAP7.1.0.DR7 keystore uses credentialReference with clear-text attribute for password instead of password attribute. But there is problem with credential reference element which is optional. *Scenario:* I want to create KeyStore with minimum required settings. But this CLI command */subsystem=elytron/key-store=keyStore:add(type=JKS)* ends with error { "outcome" => "failed", "failure-description" => { "WFLYCTL0412: Required services that are not installed:" => ["org.wildfly.security.credential-store-client.org.jboss.as.controller.security.CredentialReference"], "WFLYCTL0180: Services with missing/unavailable dependencies" => ["org.wildfly.security.key-store.keyStore is missing [org.wildfly.security.credential-store-client.org.jboss.as.controller.security.CredentialReference]"] }, "rolled-back" => true } Resource description says this {code} "credential-reference" => { "type" => OBJECT, "description" => "The reference to credential stored in CredentialStore under defined alias or clear text password.", "expressions-allowed" => false, "nillable" => true, "value-type" => { "store" => { "type" => STRING, "description" => "The name of the credential store holding the alias to credential.", "expressions-allowed" => false, "nillable" => true, "min-length" => 1L, "max-length" => 2147483647L }, "alias" => { "type" => STRING, "description" => "The alias which denotes stored secret or credential in the store.", "expressions-allowed" => false, "nillable" => true, "min-length" => 1L, "max-length" => 2147483647L }, "type" => { "type" => STRING, "description" => "The type of credential this reference is denoting.", "expressions-allowed" => false, "nillable" => true, "min-length" => 1L, "max-length" => 2147483647L }, "clear-text" => { "type" => STRING, "description" => "Secret specified using clear text. Check credential store way of supplying credential/secrets to services.", "expressions-allowed" => false, "nillable" => true, "min-length" => 1L, "max-length" => 2147483647L } }, "access-type" => "read-write", "storage" => "configuration", "restart-required" => "no-services" }, {code} *NOTE* EAP7.1.0.DR6 works fine with "password" attribute. -- This message was sent by Atlassian JIRA (v7.2.2#72004)