[jboss-jira] [JBoss JIRA] (WFLY-8293) Changing Elytron default-authentication-context with allow-resource-service-restart ends in reload-required state

Martin Choma (JIRA) issues at jboss.org
Mon Mar 6 04:05:01 EST 2017 

     [ https://issues.jboss.org/browse/WFLY-8293?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Martin Choma updated WFLY-8293:
-------------------------------
    Description: 
If I try to change Elytron default-authentication-context server ends in reload-required state.
{code}
/subsystem=elytron/authentication-context=auth-context:add()
/subsystem=elytron:write-attribute(name=default-authentication-context,value=auth-context)
{
    "outcome" => "success",
    "response-headers" => {
        "operation-requires-reload" => true,
        "process-state" => "reload-required"
    }
}
{code}

However attribute {{default-authentication-context}} is marked as {{"restart-required" => "no-services"}} in model 
{code}
/subsystem=elytron:read-resource-description(recursive=false)
{
    ...
    "default-authentication-context" => {
        "type" => STRING,
        "description" => "The default authentication context to be associated with all deployments.",
        "expressions-allowed" => false,
        "required" => false,
        "nillable" => true,
        "capability-reference" => "org.wildfly.security.authentication-context",
        "min-length" => 1L,
        "max-length" => 2147483647L,
        "access-type" => "read-write",
        "storage" => "configuration",
        "restart-required" => "no-services"
    },   
    ...
}
{code}

According to documentation [1] if attribute is marked as {{"restart-required" => "no-services"}} no restart of service is necessary

no-services – Applying the operation to the runtime does not require the restart of any services. This value is the default if the restart-required descriptor is not present.

[1] https://docs.jboss.org/author/display/WFLY10/Description+of+the+Management+Model

  was:
If I try to change Elytron default-authentication-context with header {{allow-resource-service-restart=true}} server ends in reload-required state.
{code}
/subsystem=elytron/authentication-context=auth-context:add()
/subsystem=elytron:write-attribute(name=default-authentication-context,value=auth-context){allow-resource-service-restart=true}
{
    "outcome" => "success",
    "response-headers" => {
        "operation-requires-reload" => true,
        "process-state" => "reload-required"
    }
}
{code}

Using header allow-resource-service-restart=true should restart necessary services.

It seems it is caused by {{"restart-required" => "no-services"}} for {{default-authentication-context}} attribute of Elytron subsystem. See:
{code}
/subsystem=elytron:read-resource-description(recursive=false)
{
    ...
    "default-authentication-context" => {
        "type" => STRING,
        "description" => "The default authentication context to be associated with all deployments.",
        "expressions-allowed" => false,
        "required" => false,
        "nillable" => true,
        "capability-reference" => "org.wildfly.security.authentication-context",
        "min-length" => 1L,
        "max-length" => 2147483647L,
        "access-type" => "read-write",
        "storage" => "configuration",
        "restart-required" => "no-services"
    },   
    ...
}
{code}



> Changing Elytron default-authentication-context with allow-resource-service-restart ends in reload-required state
> -----------------------------------------------------------------------------------------------------------------
>
>                 Key: WFLY-8293
>                 URL: https://issues.jboss.org/browse/WFLY-8293
>             Project: WildFly
>          Issue Type: Bug
>          Components: Security
>            Reporter: Ondrej Lukas
>            Assignee: Darran Lofthouse
>
> If I try to change Elytron default-authentication-context server ends in reload-required state.
> {code}
> /subsystem=elytron/authentication-context=auth-context:add()
> /subsystem=elytron:write-attribute(name=default-authentication-context,value=auth-context)
> {
>     "outcome" => "success",
>     "response-headers" => {
>         "operation-requires-reload" => true,
>         "process-state" => "reload-required"
>     }
> }
> {code}
> However attribute {{default-authentication-context}} is marked as {{"restart-required" => "no-services"}} in model 
> {code}
> /subsystem=elytron:read-resource-description(recursive=false)
> {
>     ...
>     "default-authentication-context" => {
>         "type" => STRING,
>         "description" => "The default authentication context to be associated with all deployments.",
>         "expressions-allowed" => false,
>         "required" => false,
>         "nillable" => true,
>         "capability-reference" => "org.wildfly.security.authentication-context",
>         "min-length" => 1L,
>         "max-length" => 2147483647L,
>         "access-type" => "read-write",
>         "storage" => "configuration",
>         "restart-required" => "no-services"
>     },   
>     ...
> }
> {code}
> According to documentation [1] if attribute is marked as {{"restart-required" => "no-services"}} no restart of service is necessary
> no-services – Applying the operation to the runtime does not require the restart of any services. This value is the default if the restart-required descriptor is not present.
> [1] https://docs.jboss.org/author/display/WFLY10/Description+of+the+Management+Model



--
This message was sent by Atlassian JIRA
(v7.2.3#72005)

More information about the jboss-jira mailing list