Elytron, case-sensistive=false attribute making problems for Kerberos --------------------------------------------------------------------- Key: WFCORE-2903 URL: https://issues.jboss.org/browse/WFCORE-2903 Project: WildFly Core Issue Type: Bug Components: Security Reporter: Yeray Borges Assignee: Yeray Borges Priority: Critical {{case-sensitive}} attribute with default value to false introduced in DR16 is making problem using kerberos authentication. {code} WFLYELY00918: Invalid user name 'jduke(a)JBOSS.ORG' because the realm fileSystemRealm only supports lower case alias names {code} It is common to have uppercase realm name in kerberos authentication. User can workaround issue, but it is really unexpected to not work out of box. * case-sensitive = true * use principal-transformer 'jduke(a)JBOSS.ORG' -> 'jduke' {code} "case-sensitive" => { "type" => BOOLEAN, "description" => "Case sensitivity of the properties realm. If case insensitive only lower usernames are allowed.", "expressions-allowed" => false, "required" => false, "nillable" => true, "default" => false, "access-type" => "read-write", "storage" => "configuration", "restart-required" => "resource-services" } {code}