Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 1.10.0.Final, 1.9.3.Final
Affects Version/s: None
Component/s: Undertow Servlet
Labels:
None

Git Pull Request:
https://github.com/wildfly-security/elytron-web/pull/203

When an app does not have the login-config element defined, we currently override the app's configuration and enable all the mechanisms from the HttpAuthenticationFactory. The app's authentication mechanisms should only be overridden if overrideDeploymentConfig has been set to true.

causes

WFLY-15478 All requests with Basic-Auth to a deployment get intercepted and returned with 401 [Wildfly 25]

Closed

WFLY-15411 Application authentication is requested when configure 2way TLS auth by default

Closed

WFLY-15471 request over HTTP 1.1 protocol with TLSv1.2 of openSSL implementation throw IllegalStateException: UT000124: renegotiation timed out

Closed

WFLY-15477 HTTPS connection fails with reverse proxy HTTPS -> HTTPS

Closed

WFLY-15567 Wildfly 25 and nginx

Closed

is cloned by

JBEAP-23971 [GSS](7.4.z) ELYWEB-155 - Don't override the deployment's authentication mechanisms when overrideDeploymentConfig is false and the loginConfig is null

Closed

is incorporated by

WFCORE-5677 Upgrade Elytron Web to 1.10.0.Final

Closed

(1 is cloned by, 1 is incorporated by)

Assignee:: Farah Juma

Reporter:: Farah Juma

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2021/10/27 5:37 PM

Updated:: 2022/12/06 5:30 PM

Resolved:: 2021/10/28 1:52 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates