Management HTTP API using security-realm for CLIENT_CERT authentication results in prompt for password instead of directly authenticating ----------------------------------------------------------------------------------------------------------------------------------------- Key: WFCORE-2718 URL: https://issues.jboss.org/browse/WFCORE-2718 Project: WildFly Core Issue Type: Bug Components: Domain Management, Security Affects Versions: 3.0.0.Beta16 Reporter: Darran Lofthouse Assignee: Darran Lofthouse Priority: Blocker Labels: management-security, regression, security-realm, ssl Fix For: 3.0.0.Beta18 Having defined CLIENT_CERT auth on HTTP management API with legacy security-realm causes that after requesting client cert, there is also required password. This is regression in comparison to EAP 7.0 and EAP 7.1.0.DR7, as such marking as blocker. For details how to reproduce see steps to reproduce