Server-identity/secret integration with credential reference is not correct.
When is set Server-identity/secret to use password obtained from credential-store then there is a problem with it.
I observe that SecretIdentityService expects password as constructor argument [1][2] and afterwards is resolved password from credential-store. But it fails because of regular password isn't defined and it is used as method argument [3].
Server log
[Host Controller] [0m[31m12:27:48,205 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-8) MSC000001: Failed to start service org.wildfly.core.management.security.realm.ManagementRealm.secret: org.jboss.msc.service.StartException in service org.wildfly.core.management.security.realm.ManagementRealm.secret: Failed to start service[0m [Host Controller] [31m at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1978)[0m [Host Controller] [31m at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)[0m [Host Controller] [31m at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)[0m [Host Controller] [31m at java.lang.Thread.run(Thread.java:745)[0m [Host Controller] [31mCaused by: java.lang.IllegalArgumentException: Last unit does not have enough valid bits[0m [Host Controller] [31m at java.util.Base64$Decoder.decode0(Base64.java:734)[0m [Host Controller] [31m at java.util.Base64$Decoder.decode(Base64.java:526)[0m [Host Controller] [31m at java.util.Base64$Decoder.decode(Base64.java:549)[0m [Host Controller] [31m at org.jboss.as.domain.management.security.SecretIdentityService.start(SecretIdentityService.java:77)[0m [Host Controller] [31m at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:2032)[0m [Host Controller] [31m at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1955)[0m [Host Controller] [31m ... 3 more[0m
[1] https://github.com/wildfly/wildfly-core/blob/3.0.0.Beta22/domain-management/src/main/java/org/jboss/as/domain/management/security/SecurityRealmAddHandler.java#L753
[2] https://github.com/wildfly/wildfly-core/blob/3.0.0.Beta22/domain-management/src/main/java/org/jboss/as/domain/management/security/SecretIdentityService.java#L68
[3] https://github.com/wildfly/wildfly-core/blob/3.0.0.Beta22/domain-management/src/main/java/org/jboss/as/domain/management/security/SecretIdentityService.java#L77
- blocks
-
JBEAP-9321 There is missing CS integration with core management
- Closed
- is cloned by
-
WFCORE-2905 Server-identity/secret integration with credential reference is not correct.
- Resolved
- is incorporated by
-
JBEAP-11137 (7.1.0) Upgrade to WildFly Core to 3.0.0.Beta26
- Closed
- relates to
-
JBEAP-11294 Server-identity/secret has required "value" attribute, but there is now credential-reference too and there is no way how to update existing resource to use another option.
- Closed