[jboss-jira] [JBoss JIRA] (WFLY-7483) Credential store has configuration in "uri" attribute.

Brian Stansberry (JIRA) issues at jboss.org
Fri Jan 20 09:52:00 EST 2017 

    [ https://issues.jboss.org/browse/WFLY-7483?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13351746#comment-13351746 ] 

Brian Stansberry commented on WFLY-7483:
----------------------------------------

Is your cs-map a simple map or is it a complex attribute? That is are "store" and "create" fully defined fields of attribute cs-map, with fully defined child fields "password", "storage", "file"? Or are "store.password" etc arbitrary keys in a map?

Fully specified parameters have significant advantages over arbitrary ones and we should use those if at all possible. But if the map is just arbitrary key/value pairs, I don't have a strong preference for it over a string. If the uri is going to be useful in other contexts than WildFly management calls, so some users will learn the uri syntax, then using a different arbitrary format in WildFly management will be confusing.

> Credential store has configuration in "uri" attribute.
> ------------------------------------------------------
>
>                 Key: WFLY-7483
>                 URL: https://issues.jboss.org/browse/WFLY-7483
>             Project: WildFly
>          Issue Type: Bug
>          Components: Security
>            Reporter: Hynek Švábek
>            Assignee: Peter Skopek
>            Priority: Critical
>
> Credential store has configuration in "uri" attribute. All parameters are in one string. It can be confusing and there is risk of typo (e.g. delimiter typo)
> In my opinion the main intention for it is to have general solution for custom implementation.
> *Current state*
> {code}
> /subsystem=elytron/credential-store=cs001:add(uri="cr-store://test/cs/keystore.jceks?store.password=pass123;create.storage=true")
> {code}
> *Suggestion for improvement:*
> Better solution to achieve this could be use a map.
> e.g. some like that:
> {code}
> /subsystem=elytron/credential-store=credStore:add(cs-map={store.password=pass123, create.storage=true, store.file=path/to/cred/file})
> {code}
> Now credential store name is in URI too, it can be get from resource name.



--
This message was sent by Atlassian JIRA
(v7.2.3#72005)

More information about the jboss-jira mailing list