[jboss-jira] [JBoss JIRA] (WFCORE-2732) Elytron - it should also be possible to store OTP algorithm on security realm level
Josef Cacek (JIRA)
issues at jboss.org
Wed Apr 26 17:06:01 EDT 2017
Josef Cacek created WFCORE-2732:
-----------------------------------
Summary: Elytron - it should also be possible to store OTP algorithm on security realm level
Key: WFCORE-2732
URL: https://issues.jboss.org/browse/WFCORE-2732
Project: WildFly Core
Issue Type: Bug
Components: Security
Reporter: Josef Cacek
Assignee: Darran Lofthouse
Priority: Critical
It should be possible to store OTP algorithm name on security realm level too.
Using of the OTP SASL mechanism requires modifiable realm and currently only ldap-realm integration is finished.
The ldap-realm now requires to store the algorithm name into an LDAP attribute together with the rest of OTP configuration (seed, hash, sequence), but this can be limiting (or space vasting) when the algorithm is the same for all users in the realm. There should be a possibility to configure the OTP algorithm name also on the realm level and share it for users. Make it an alternative for {{ldap-realm.identity-mapping.otp-credential-mapper.algorithm-from}} configuration.
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list