[jboss-jira] [JBoss JIRA] (WFCORE-3442) CLI can't reload if authentication configuration changed
Jean-Francois Denise (JIRA)
issues at jboss.org
Mon Dec 4 09:52:00 EST 2017
[ https://issues.jboss.org/browse/WFCORE-3442?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jean-Francois Denise updated WFCORE-3442:
-----------------------------------------
Description:
The context:
- Legacy ManagementRealm, no local-auth enabled, only users located properties file.
- SASL authentication factory, digest with FooRealm, userName/password in other properties file
The http management interface
- Reference ManagementRealm and upgrade references SAL factory.
>From CLI:
1) User connects using credentials required for FooRealm
2) User disables SASL authentication : /core-service=management/management-interface=http-interface:write-attribute(name=http-upgrade.sasl-authentication-factory,value=undefined
3) User reloads ==> Connection fails.
The user should be prompted for ManagementRealm credentials (if the current ones are not valid in the context of this realm).
was:
The context:
- Legacy ManagementRealm, no local-auth enabled, only users located properties file.
- SASL authentication factory, digest with FooRealm, userName/password in other properties file
The http management interface
- Reference ManagementRealm and upgrade references SAL factory.
>From CLI:
1) User connects using credentials required for FooRealm
2) User disables SASL authentication : /core-service=management/management-interface=http-interface:write-attribute(name=http-upgrade.sasl-authentication-factory,value=undefined
3) User reloads ==> Connection fails.
The user should be prompted for ManagementRealm credentials (if the current ones are not valid in the context of this realm).
Furthermore, ConnectionInfo should expose the realm the CLI is connected to.
> CLI can't reload if authentication configuration changed
> --------------------------------------------------------
>
> Key: WFCORE-3442
> URL: https://issues.jboss.org/browse/WFCORE-3442
> Project: WildFly Core
> Issue Type: Bug
> Components: CLI
> Reporter: Jean-Francois Denise
> Assignee: Jean-Francois Denise
>
> The context:
> - Legacy ManagementRealm, no local-auth enabled, only users located properties file.
> - SASL authentication factory, digest with FooRealm, userName/password in other properties file
> The http management interface
> - Reference ManagementRealm and upgrade references SAL factory.
> From CLI:
> 1) User connects using credentials required for FooRealm
> 2) User disables SASL authentication : /core-service=management/management-interface=http-interface:write-attribute(name=http-upgrade.sasl-authentication-factory,value=undefined
> 3) User reloads ==> Connection fails.
> The user should be prompted for ManagementRealm credentials (if the current ones are not valid in the context of this realm).
--
This message was sent by Atlassian JIRA
(v7.5.0#75005)
More information about the jboss-jira
mailing list