[jboss-jira] [JBoss JIRA] (WFLY-8876) Server-identity/secret resource has required "value" attribute, but there is now credential-reference too.
Hynek Švábek (JIRA)
issues at jboss.org
Fri Jun 2 04:07:01 EDT 2017
Hynek Švábek created WFLY-8876:
----------------------------------
Summary: Server-identity/secret resource has required "value" attribute, but there is now credential-reference too.
Key: WFLY-8876
URL: https://issues.jboss.org/browse/WFLY-8876
Project: WildFly
Issue Type: Bug
Components: Security
Reporter: Hynek Švábek
Assignee: Darran Lofthouse
Priority: Blocker
Server-identity/secret has required "value" attribute, but there is now credential-reference too.
"Value" and credential-reference are mutually exclusive and one of them must be set.
Please keep on mind that there must be a way how to update existing server-identity/secret for change "value" to credential-reference and vice versa.
*resource-description*
{code:collapse}
[domain at localhost:9990 /] /host=master/core-service=management/security-realm=ManagementRealm/server-identity=secret:read-resource-description
{
"outcome" => "success",
"result" => {
"description" => "Configuration of the secret/password-based identity of a server or host controller.",
"deprecated" => {
"since" => "1.7.0",
"reason" => "The security-realm configuration is deprecated and may be removed or moved in future versions."
},
"access-constraints" => {"sensitive" => {"security-realm" => {"type" => "core"}}},
"attributes" => {
"credential-reference" => {
"type" => OBJECT,
"description" => "The reference to credential for the secret / password stored in CredentialStore under defined alias or clear text password.",
"expressions-allowed" => false,
"required" => false,
"nillable" => true,
"alternatives" => ["value"],
"access-constraints" => {"sensitive" => {"credential" => {"type" => "core"}}},
"value-type" => {
"store" => {
"type" => STRING,
"description" => "The name of the credential store holding the alias to credential.",
"expressions-allowed" => false,
"required" => false,
"nillable" => true,
"alternatives" => ["clear-text"],
"requires" => ["alias"],
"min-length" => 1L,
"max-length" => 2147483647L
},
"alias" => {
"type" => STRING,
"description" => "The alias which denotes stored secret or credential in the store.",
"expressions-allowed" => true,
"required" => false,
"nillable" => true,
"requires" => ["store"],
"min-length" => 1L,
"max-length" => 2147483647L
},
"type" => {
"type" => STRING,
"description" => "The type of credential this reference is denoting.",
"expressions-allowed" => true,
"required" => false,
"nillable" => true,
"min-length" => 1L,
"max-length" => 2147483647L
},
"clear-text" => {
"type" => STRING,
"description" => "Secret specified using clear text. Check credential store way of supplying credential/secrets to services.",
"expressions-allowed" => true,
"required" => false,
"nillable" => true,
"alternatives" => ["store"],
"min-length" => 1L,
"max-length" => 2147483647L
}
},
"access-type" => "read-write",
"storage" => "configuration",
"restart-required" => "no-services"
},
"value" => {
"type" => STRING,
"description" => "The secret / password - Base64 Encoded.",
"expressions-allowed" => true,
"required" => true,
"nillable" => true,
"alternatives" => ["credential-reference"],
"min-length" => 1L,
"max-length" => 2147483647L,
"access-type" => "read-write",
"storage" => "configuration",
"restart-required" => "no-services"
}
},
"operations" => undefined,
"notifications" => undefined,
"children" => {}
}
}
{code}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list