[jboss-jira] [JBoss JIRA] (WFCORE-2186) Salted password cannot be set through CLI for Elytron filesystem-realm identity

Darran Lofthouse (JIRA) issues at jboss.org
Thu Jan 12 06:15:01 EST 2017 

    [ https://issues.jboss.org/browse/WFCORE-2186?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13347019#comment-13347019 ] 

Darran Lofthouse commented on WFCORE-2186:
------------------------------------------

Looking at the commands here we may still want to review the parameters for these operations.

If we are passing in a clear password there could be an argument for leaving out the salt and we generate one server side.

On the other hand if providing the salt and iteration count it may make more sense for the management client to pass in the hashed form of the password.

The modifiable realms are not going to be fully supported at this point whilst we work through some usability issues such as these comments but another option may be to add commands to the CLI that handle a lot of this.

Having said that these calls should still work with the current model, we may just evolve it slightly.

> Salted password cannot be set through CLI for Elytron filesystem-realm identity
> -------------------------------------------------------------------------------
>
>                 Key: WFCORE-2186
>                 URL: https://issues.jboss.org/browse/WFCORE-2186
>             Project: WildFly Core
>          Issue Type: Bug
>          Components: CLI
>    Affects Versions: 3.0.0.Alpha16
>            Reporter: Ondrej Lukas
>            Assignee: Michal Petrov
>
> Password encryption/hash mechanisms which contain {{salt}} attribute for filesystem-realm identity cannot be added through CLI. {{set-password}} operation fails and finishes with failure-description "WFLYCTL0155: password may not be null" even if password was set. It seems when {{salt}} attribute with {{bytes}} value is used then {{password}} attribute is ignored by CLI.
> Following password encryption/hash mechanisms from filesystem-realm identity are affected by issue:
> - {{bcrypt}}
> - {{salted-simple-digest}}



--
This message was sent by Atlassian JIRA
(v7.2.3#72005)

More information about the jboss-jira mailing list