Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Obsolete
Priority: Major
Fix Version/s: 7.1.0.DR18
Affects Version/s: 7.1.0.DR18
Component/s: Security
Labels:
- eap72

Target Release:

7.1.0.GA

SFDC Cases Counter:
SFDC Cases Links:

Description

Changing attributes security-domain and mechanism-configurations of http-authentication-factory does not apply immediatelly even though header allow-resource-service-restart=true is used

[standalone@localhost:9990 /] /subsystem=elytron/http-authentication-factory=application-http-authentication:write-attribute(name=security-domain,value=ApplicationDomain){allow-resource-service-restart=true}
{
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0158: Operation handler failed: java.lang.UnsupportedOperationException",
    "rolled-back" => true
}

[standalone@localhost:9990 /] /subsystem=elytron/http-authentication-factory=application-http-authentication:write-attribute(name=mechanism-configurations[0].host-name,value=localhost){allow-resource-service-restart=true}
{
    "outcome" => "success",
    "response-headers" => {
        "operation-requires-reload" => true,
        "process-state" => "reload-required"
    }
}

Header should work as attributes are declared as "restart-required" => "resource-services"

"security-domain" => {
    "type" => STRING,
    "description" => "The SecurityDomain to associate with this resource",
    "expressions-allowed" => false,
    "required" => true,
    "nillable" => false,
    "capability-reference" => "org.wildfly.security.security-domain",
    "min-length" => 1L,
    "max-length" => 2147483647L,
    "access-type" => "read-write",
    "storage" => "configuration",
    "restart-required" => "resource-services"
}

And according to documentation [1]:

resource-services – The operation can only immediately update the persistent configuration; applying the operation to the runtime will require a subsequent restart of some services associated with the resource. If the operation includes the request header "allow-resource-service-restart" => true, the handler for the operation will go ahead and restart the runtime service. Otherwise executing the operation will put the server into a "reload-required" state. (See the discussion of "all-services" above for more on the "reload-required" state.)

[1] https://docs.jboss.org/author/display/WFLY10/Description+of+the+Management+Model

Make allow-resource-service-restart=true work or if it is not achievable redefine restart-required model metadata appropriately, e.g. "all-services"

Attachments

Issue Links

is cloned by

WFCORE-2820 Elytron, changing security-domain/mechanism-configurations of http-authentication-factory ends in reload-required state

Resolved

is related to

JBEAP-10168 UnsupportedOperationException for {allow-resource-service-restart=true} for many attributes in Elytron subsystem

Verified

JBEAP-9373 Elytron, changing http-server-mechanism-factory of http-authentication-factory ends in reload-required state

Verified

Activity

People

Assignee:: Tomas Hofman

Reporter:: Martin Choma

Tester:: Martin Choma

QA Contact:: Martin Choma

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2017/05/17 8:30 AM

Updated:: 2021/10/24 5:55 AM

Resolved:: 2017/11/09 8:41 AM