[JBoss JIRA] (WFCORE-2449) Default Elytron realm names are confusing - use same values as Legacy security realms - jboss-jira

Friday, 7 July 2017



     [
https://issues.jboss.org/browse/WFCORE-2449?page=com.atlassian.jira.plugi...
]

Darran Lofthouse resolved WFCORE-2449.
--------------------------------------
    Fix Version/s: 3.0.0.Beta29
       Resolution: Rejected


...
 Default Elytron realm names are confusing - use same values as Legacy
security realms
 -------------------------------------------------------------------------------------

                 Key: WFCORE-2449
                 URL: https://issues.jboss.org/browse/WFCORE-2449
             Project: WildFly Core
          Issue Type: Bug
          Components: Security
            Reporter: Josef Cacek
            Assignee: Darran Lofthouse
            Priority: Blocker
              Labels: user_experience
             Fix For: 3.0.0.Beta29


 The default application server profiles now contain Elytron subsystem configured (more in
EAP7-543). The subsystem contains 2 properties realms, which copy behavior of security
realms in legacy security. They use the same name as the original ones *ApplicationRealm*
and *ManagementRealm*:
 {code:xml}
 <properties-realm name="ApplicationRealm">
     <users-properties path="application-users.properties"
relative-to="jboss.server.config.dir"
digest-realm-name="ApplicationRealm"/>
     <groups-properties path="application-roles.properties"
relative-to="jboss.server.config.dir"/>
 </properties-realm>
 <properties-realm name="ManagementRealm">
     <users-properties path="mgmt-users.properties"
relative-to="jboss.server.config.dir"
digest-realm-name="ManagementRealm"/>
     <groups-properties path="mgmt-groups.properties"
relative-to="jboss.server.config.dir"/>
 </properties-realm>
 {code}
 The new Elytron realms must use different names than legacy ones. Otherwise
customers/administrators may think about the Elytron realms as just references to the
legacy security.
 *Suggested solution*
 Rename the default Elytron realms to something like *ElytronManagementRealm* or
*ManagementElytronRealm*. So the configuration looks like:
 {code:xml}
 <properties-realm name="ApplicationElytronRealm">
     <users-properties path="application-users.properties"
relative-to="jboss.server.config.dir"
digest-realm-name="ApplicationRealm"/>
     <groups-properties path="application-roles.properties"
relative-to="jboss.server.config.dir"/>
 </properties-realm>
 <properties-realm name="ManagementElytronRealm">
     <users-properties path="mgmt-users.properties"
relative-to="jboss.server.config.dir"
digest-realm-name="ManagementRealm"/>
     <groups-properties path="mgmt-groups.properties"
relative-to="jboss.server.config.dir"/>
 </properties-realm>
 {code} 


--
This message was sent by Atlassian JIRA
(v7.2.3#72005)

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[JBoss JIRA] (WFCORE-2449) Default Elytron realm names are confusing - use same values as Legacy security realms