[jboss-jira] [JBoss JIRA] (WFLY-6372) Flagging of invalid login credential for datasource is inconsistent.

Lin Gao (JIRA) issues at jboss.org
Fri May 13 03:39:00 EDT 2016 

    [ https://issues.jboss.org/browse/WFLY-6372?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13204955#comment-13204955 ] 

Lin Gao commented on WFLY-6372:
-------------------------------

The error of a data-source with the security-domain set-up comes from security subsystem which is in an earlier stage than that JCA gets the JDBC connection. So it won't have the same stack trace on exceptions(if the inconsistent means the stack-trace).

IMO, the problem is that some messages of exception are swallowed when trying to get the credentials from a security-domain, print those messages out will show more useful information.

> Flagging of invalid login credential for datasource is inconsistent.
> --------------------------------------------------------------------
>
>                 Key: WFLY-6372
>                 URL: https://issues.jboss.org/browse/WFLY-6372
>             Project: WildFly
>          Issue Type: Bug
>            Reporter: Bartosz Baranowski
>            Assignee: Lin Gao
>
> There are multiple parts to this
> (1) If the security-domain is defined for a datasource and the password is invalid, an error is reported in the console which is expected
> <datasource jndi-name="java:/DefaultDS2" pool-name="DefaultDS2" enabled="true" use-java-context="true">
> <connection-url>jdbc:oracle:thin:@hostname:1521:ora1</connection-url>
> <driver>oracle</driver>
> <security>
> <security-domain>encryptedPassword2</security-domain>
> </security>
> </datasource>
> (2) If the 'password' for the datasource is invalid no error is reported in the console log at startup e.g
> <datasource jndi-name="java:/DefaultDS2" pool-name="DefaultDS2" enabled="true" use-java-context="true">
> <connection-url>jdbc:oracle:thin:@hostname:1521:ora1</connection-url>
> <driver>oracle</driver>
> <security>
> <user-name>user</user-name>
> <password>passwd</password>
> </security>
> </datasource>
> 3. Whether or not you use a security-domain for a datasource, an invalid 'username' doesn't get flagged in the console.
> Actual results:
> Expected results:
> Invalid username and password should be flagged as login errors in the console log.
> It shouldn't make a difference whether or not you use security-credentials



--
This message was sent by Atlassian JIRA
(v6.4.11#64026)

More information about the jboss-jira mailing list