[jboss-jira] [JBoss JIRA] (WFLY-8197) Following https://github.com/wildfly/quickstart/tree/10.x/security-vault-askpass with wildfly-10.1.0-7.fc25.noarch fails

Jan Pazdziora (JIRA) issues at jboss.org
Wed Feb 22 08:07:00 EST 2017 

    [ https://issues.jboss.org/browse/WFLY-8197?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13367497#comment-13367497 ] 

Jan Pazdziora commented on WFLY-8197:
-------------------------------------

https://bugzilla.redhat.com/show_bug.cgi?id=1165743#c7 suggests the (default) JKS + VAULT.dat are not supported. The question is if something (vault.sh?) should do the conversion from JKS to JCEKS or if the keytool parameters should specify JCEKS in the first place.

> Following https://github.com/wildfly/quickstart/tree/10.x/security-vault-askpass with wildfly-10.1.0-7.fc25.noarch fails
> ------------------------------------------------------------------------------------------------------------------------
>
>                 Key: WFLY-8197
>                 URL: https://issues.jboss.org/browse/WFLY-8197
>             Project: WildFly
>          Issue Type: Bug
>         Environment: wildfly-10.1.0-7.fc25.noarch
>            Reporter: Jan Pazdziora
>            Assignee: Jason Greene
>            Priority: Trivial
>
> I try to follow the README in this quickstart but the parameters to the keytool command seem to create keystore which vault.sh does not like, resulting in
> {noformat}
> Problem occurred:
> java.lang.Exception: WFLYSEC0045: Exception encountered:
> 	at org.jboss.as.security.vault.VaultSession.initSecurityVault(VaultSession.java:194)
> 	at org.jboss.as.security.vault.VaultSession.startVaultSession(VaultSession.java:212)
> 	at org.jboss.as.security.vault.VaultTool.execute(VaultTool.java:193)
> 	at org.jboss.as.security.vault.VaultTool.main(VaultTool.java:83)
> 	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> 	at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
> 	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> 	at java.lang.reflect.Method.invoke(Method.java:498)
> 	at org.jboss.modules.Module.run(Module.java:330)
> 	at org.jboss.modules.Main.main(Main.java:505)
> Caused by: org.jboss.security.vault.SecurityVaultException: java.lang.RuntimeException: PBOX00137: Security Vault does not contain SecretKey entry under alias (vault)
> 	at org.picketbox.plugins.vault.PicketBoxSecurityVault.readVaultContent(PicketBoxSecurityVault.java:487)
> 	at org.picketbox.plugins.vault.PicketBoxSecurityVault.init(PicketBoxSecurityVault.java:214)
> 	at org.jboss.as.security.vault.VaultSession.initSecurityVault(VaultSession.java:191)
> 	... 9 more
> Caused by: java.lang.RuntimeException: PBOX00137: Security Vault does not contain SecretKey entry under alias (vault)
> 	at org.picketbox.plugins.vault.PicketBoxSecurityVault.readVersionedVaultContent(PicketBoxSecurityVault.java:609)
> 	at org.picketbox.plugins.vault.PicketBoxSecurityVault.readVaultContent(PicketBoxSecurityVault.java:480)
> 	... 11 more
> {noformat}



--
This message was sent by Atlassian JIRA
(v7.2.3#72005)

More information about the jboss-jira mailing list