[jboss-jira] [JBoss JIRA] (WFLY-7584) Configuring more password type should be allowed for Elytron filesystem-realm identity in CLI

Ondrej Lukas (JIRA) issues at jboss.org
Wed Nov 16 01:09:00 EST 2016 

     [ https://issues.jboss.org/browse/WFLY-7584?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Ondrej Lukas updated WFLY-7584:
-------------------------------
    Description: 
In case when two password type are part of {{set-password}} operation for identity of Elytron filesystem-realm then only first of them is used and others are discarded. Configuring multiple credentials for one identity should be supported [1].

[1] https://issues.jboss.org/browse/WFLY-7584?focusedCommentId=13322919&page=com.atlassian.jira.plugin.system.issuetabpanels%3Acomment-tabpanel#comment-13322919

  was:
It is possible to specify more types of password encryption/hash mechanism in {{set-password}} operation of filesystem-realm identity. When this happens then first password encryption/hash mechanism is correctly used, but the rest of them is discarded. However it make sense to have set only one password encryption/hash mechanism for identity. It can be confusing to allow CLI command with more types of password encryption/hash mechanism specified.

Suggestion for improvement:
Disallow to use set-password operation with more than one password encryption/hash mechanism.

        Summary: Configuring more password type should be allowed for Elytron filesystem-realm identity in CLI  (was: User should be able to specify only one password type for Elytron filesystem-realm identity)


> Configuring more password type should be allowed for Elytron filesystem-realm identity in CLI
> ---------------------------------------------------------------------------------------------
>
>                 Key: WFLY-7584
>                 URL: https://issues.jboss.org/browse/WFLY-7584
>             Project: WildFly
>          Issue Type: Bug
>          Components: Security
>    Affects Versions: 11.0.0.Alpha1
>            Reporter: Ondrej Lukas
>            Assignee: Darran Lofthouse
>              Labels: user_experience
>
> In case when two password type are part of {{set-password}} operation for identity of Elytron filesystem-realm then only first of them is used and others are discarded. Configuring multiple credentials for one identity should be supported [1].
> [1] https://issues.jboss.org/browse/WFLY-7584?focusedCommentId=13322919&page=com.atlassian.jira.plugin.system.issuetabpanels%3Acomment-tabpanel#comment-13322919



--
This message was sent by Atlassian JIRA
(v7.2.3#72005)

More information about the jboss-jira mailing list