Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Major
Fix Version/s: None
Affects Version/s: 7.1.0.DR17
Component/s: Security
Labels:
None

CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Target Release:

7.4.z.GA
Git Pull Request:
https://github.com/wildfly-security/wildfly-elytron/pull/933
Steps to Reproduce:

Hide

Look in to the attached standalone-full.xml (search for "OTP" string in there).

When a client connects to server with given profile over remoting to port 10569, then the server doesn't offer OTP as an available mechanism.

You can find the test I've used here:
https://github.com/kwart/wildfly/blob/JBEAP-10629-OTP-reproducer/testsuite/integration/elytron/src/test/java/org/wildfly/test/integration/elytron/sasl/SaslJmsClientTestCase.java#L184

Show
Look in to the attached standalone-full.xml (search for "OTP" string in there). When a client connects to server with given profile over remoting to port 10569, then the server doesn't offer OTP as an available mechanism. You can find the test I've used here: https://github.com/kwart/wildfly/blob/JBEAP-10629-OTP-reproducer/testsuite/integration/elytron/src/test/java/org/wildfly/test/integration/elytron/sasl/SaslJmsClientTestCase.java#L184

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

I'm not able to use the new OTP SASL mechanism in WildFly (introduced as part of EAP7-530).

It seems the only security-realm which has subsystem support for OTP is the ldap-realm now. Nevertheless the name filtering in AbstractMechanismAuthenticationFactory.getMechanismNames() doesn't return OTP as supported in ldap-realm. Neither the PasswordGuessEvidence nor PasswordCredential checked in the method seems to be supported.

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

standalone-full.xml
34 kB
2017/04/28 10:01 AM

blocks

JBEAP-10568 Elytron - it should also be possible to store OTP algorithm on security realm level

Closed

is cloned by

ELY-1316 Elytron - unable to use OTP SASL mechanism

Resolved

Assignee:: Josef Cacek (Inactive)

Reporter:: Josef Cacek (Inactive)

Tester:: Martin Svehla

QA Contact:: Martin Svehla

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2017/04/28 9:56 AM

Updated:: 2024/03/08 10:28 AM

Details

Description

Attachments

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates