[jboss-jira] [JBoss JIRA] (WFLY-3492) JSSE configuration in security domain wrongly acceptes empty parameters

Kabir Khan (JIRA) issues at jboss.org
Tue Sep 2 05:42:00 EDT 2014 

    [ https://issues.jboss.org/browse/WFLY-3492?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12997706#comment-12997706 ] 

Kabir Khan commented on WFLY-3492:
----------------------------------

https://github.com/kabir/wildfly/tree/cli-complex-attributes reverts Chao's commit, and should be the basis for any PR fixing this in the CLI.

> JSSE configuration in security domain wrongly acceptes empty parameters
> -----------------------------------------------------------------------
>
>                 Key: WFLY-3492
>                 URL: https://issues.jboss.org/browse/WFLY-3492
>             Project: WildFly
>          Issue Type: Bug
>      Security Level: Public(Everyone can see) 
>          Components: Domain Management
>    Affects Versions: 8.1.0.Final
>            Reporter: Chao Wang
>            Assignee: Chao Wang
>
> Description from https://bugzilla.redhat.com/show_bug.cgi?id=1080069:
> {noformat}
> When adding a jsse configuration in security domain through CLI, it's not persisted correctly.
> Steps to reproduce:
> * Run CLI (./jboss-cli.sh -c) and use this commands to configure new security domain:
> /subsystem=security/security-domain=trust-domain:add
> /subsystem=security/security-domain=trust-domain/jsse=classic:add(truststore=>{password=1234test,url=/home/jcacek/projects/ocsp-check/build/trusted-clients.jks})
> reload
> * check standalone.xml, where should be sth. like
> <security-domain name="trust-domain">
> 	<jsse truststore-password="1234test" truststore-url="/home/jcacek/projects/ocsp-check/build/trusted-clients.jks"/>
> </security-domain>
> But there is:
> <security-domain name="trust-domain">
> 	<jsse/>
> </security-domain>
> {noformat}
> {noformat}
> I had a mistake in the second command, it should be:
> /subsystem=security/security-domain=trust-domain/jsse=classic:add(truststore={password=>1234test,url=>/home/jcacek/projects/ocsp-check/build/trusted-clients.jks}) 
> Then it works.
> Nevertheless it's probably still a bug, when the original command returns:
> {
>     "outcome" => "success",
>     "response-headers" => {
>         "operation-requires-reload" => true,
>         "process-state" => "reload-required"
>     }
> }
> {noformat}



--
This message was sent by Atlassian JIRA
(v6.3.1#6329)

More information about the jboss-jira mailing list