Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Blocker
Fix Version/s: 7.1.0.ER1
Affects Version/s: 7.1.0.DR16
Component/s: Naming, Security
Labels:
- eap7.1-rfe-failure

Affects Testing:

Blocks Testing
CDW blocker:
CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Target Release:

7.1.0.GA
Steps to Reproduce:

Hide

Reproducer available on GitHub:

https://github.com/kwart/elytron-anonymous-jms-client/tree/JBEAP-10506

Show
Reproducer available on GitHub: https://github.com/kwart/elytron-anonymous-jms-client/tree/JBEAP-10506

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Naming client doesn't handle correctly the Elytron AuthenticationContext API.

if the API is used then authentication fails (SASL mech is not configured as expected) - it fails in both cases: wildfly-config.xml present or not.

        AuthenticationContext.empty()
                .with(MatchRule.ALL, AuthenticationConfiguration.EMPTY.useDefaultProviders().allowSaslMechanisms("ANONYMOUS"))
                .run(() -> {
                    doLookup("http-remoting://127.0.0.1:8080");
                });

if the API is not used and wildfly-config.xml is present, then the client works correctly

doLookup("http-remoting://127.0.0.1:8080");

<configuration>
	<authentication-client xmlns="urn:elytron:1.0">
		<authentication-rules>
			<rule use-configuration="authn" />
		</authentication-rules>
		<authentication-configurations>
			<configuration name="authn">
				<allow-sasl-mechanisms  names="ANONYMOUS"/>
				<use-service-loader-providers />
			</configuration>
		</authentication-configurations>
	</authentication-client>
</configuration>

This blocks RFEs EAP7-567 and EAP7-284.

Update 2017-05-21:
The reproducer is newly part of the AS TS (testsuite/integration/elytron module). Once the issue is fixed, unignore also the tests which are annotated with @Ignore("WFLY-8742").

is blocked by

JBEAP-10728 Upgrade naming client to 1.0.0.Beta15

Closed

is caused by

ELY-1234 AuthenticationConfiguration.useDefaultProviders is no longer using our default.

Resolved

WFNC-27 Naming providers need to have a sticky authentication association

Resolved

is cloned by

WFLY-8742 Elytron programmatic AuthenticationContext configuration doesn't work for naming client

Closed

is incorporated by

JBEAP-11137 (7.1.0) Upgrade to WildFly Core to 3.0.0.Beta26

Closed

Assignee:: Kabir Khan

Reporter:: Josef Cacek (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 2017/04/24 11:07 AM

Updated:: 2024/09/02 4:04 PM

Resolved:: 2017/06/11 6:44 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates