Empty secret-value is not allowed in credential stores ------------------------------------------------------- Key: WFCORE-2455 URL: https://issues.jboss.org/browse/WFCORE-2455 Project: WildFly Core Issue Type: Bug Components: Security Reporter: Josef Cacek Assignee: ehsavoie Hugonnet Priority: Critical Labels: credential-store Fix For: 3.0.0.Beta11 It's not possible to add an entry with empty secret-value into a credential store. Masking the fact the password is empty is a valid scenario. {code} [standalone@localhost:9990 /] /subsystem=elytron/credential-store=cred-store-default/alias=emptysecret:add() { "outcome" => "failed", "failure-description" => "WFLYCTL0155: 'secret-value' may not be null", "rolled-back" => true } [standalone@localhost:9990 /] /subsystem=elytron/credential-store=cred-store-default/alias=emptysecret:add(secret-value="") { "outcome" => "failed", "failure-description" => "WFLYCTL0113: '' is an invalid value for parameter secret-value. Values must have a minimum length of 1 characters", "rolled-back" => true } {code} *Unignore tests* When this issue is fixed, unignore (and fix if needed) related tests in {{testsuite/elytron/src/test/java/org/wildfly/test/integration/elytron/application/}}. Thanks. {code} git grep WFLY-8143 {code}