[jboss-jira] [JBoss JIRA] (WFLY-8877) Server-identity/secret integration with credential reference is not correct.

Hynek Švábek (JIRA) issues at jboss.org
Fri Jun 2 06:56:00 EDT 2017 

Hynek Švábek created WFLY-8877:
----------------------------------

             Summary: Server-identity/secret integration with credential reference is not correct.
                 Key: WFLY-8877
                 URL: https://issues.jboss.org/browse/WFLY-8877
             Project: WildFly
          Issue Type: Bug
          Components: Security
            Reporter: Hynek Švábek
            Assignee: Darran Lofthouse
            Priority: Blocker


Server-identity/secret integration with credential reference is not correct.

When is set Server-identity/secret to use password obtained from credential-store then there is a problem with it.
I observe that SecretIdentityService expects password as constructor argument [1][2] and afterwards is resolved password from credential-store. But it fails because of regular password isn't defined and it is used as method argument [3].

*Server log*
{code:collapse}
[Host Controller] [0m[31m12:27:48,205 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-8) MSC000001: Failed to start service org.wildfly.core.management.security.realm.ManagementRealm.secret: org.jboss.msc.service.StartException in service org.wildfly.core.management.security.realm.ManagementRealm.secret: Failed to start service[0m
[Host Controller] [31m	at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1978)[0m
[Host Controller] [31m	at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)[0m
[Host Controller] [31m	at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)[0m
[Host Controller] [31m	at java.lang.Thread.run(Thread.java:745)[0m
[Host Controller] [31mCaused by: java.lang.IllegalArgumentException: Last unit does not have enough valid bits[0m
[Host Controller] [31m	at java.util.Base64$Decoder.decode0(Base64.java:734)[0m
[Host Controller] [31m	at java.util.Base64$Decoder.decode(Base64.java:526)[0m
[Host Controller] [31m	at java.util.Base64$Decoder.decode(Base64.java:549)[0m
[Host Controller] [31m	at org.jboss.as.domain.management.security.SecretIdentityService.start(SecretIdentityService.java:77)[0m
[Host Controller] [31m	at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:2032)[0m
[Host Controller] [31m	at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1955)[0m
[Host Controller] [31m	... 3 more[0m
{code}




[1] https://github.com/wildfly/wildfly-core/blob/3.0.0.Beta22/domain-management/src/main/java/org/jboss/as/domain/management/security/SecurityRealmAddHandler.java#L753
[2] https://github.com/wildfly/wildfly-core/blob/3.0.0.Beta22/domain-management/src/main/java/org/jboss/as/domain/management/security/SecretIdentityService.java#L68
[3] https://github.com/wildfly/wildfly-core/blob/3.0.0.Beta22/domain-management/src/main/java/org/jboss/as/domain/management/security/SecretIdentityService.java#L77



--
This message was sent by Atlassian JIRA
(v7.2.3#72005)

More information about the jboss-jira mailing list