When Elytron client configuration file includes configuration.authentication-client.authentication-configurations.configuration.credentials.hashed-password element then ConfigXMLParseException is thrown during parsing of configuration file.
For following configuration file:
<configuration>
<authentication-client xmlns="urn:elytron:1.0">
<authentication-rules>
<rule use-configuration="auth-config"/>
</authentication-rules>
<authentication-configurations>
<configuration name="auth-config">
<sasl-mechanism-selector selector="DIGEST-MD5"/>
<set-user-name name="user"/>
<credentials>
<hashed-password algorithm="simple-digest-md5" hash="cGFzc3dvcmQ="/>
</credentials>
</configuration>
</authentication-configurations>
</authentication-client>
</configuration>
following exception is thrown:
org.wildfly.client.config.ConfigXMLParseException: CONF0005: Unexpected element "authentication-client" in namespace "urn:elytron:1.0" encountered at vfs:/content/wildfly-config-xml.war/META-INF/wildfly-config.xml:15:5 at org.wildfly.client.config.ConfigurationXMLStreamReader.unexpectedElement(ConfigurationXMLStreamReader.java:245) at org.wildfly.security.auth.client.ElytronXmlParser.parseAuthenticationClientConfiguration(ElytronXmlParser.java:197) at org.wildfly.security.auth.client.ElytronXmlParser.parseAuthenticationClientConfiguration(ElytronXmlParser.java:146) at com.redhat.eap.qe.elytron.authnctx.WildflyConfigXmlServlet.parseAndCreateAuthenticationClientConfiguration(WildflyConfigXmlServlet.java:120) ... 41 more
When hashed-password is changed to clear-password:
<clear-password password="password"/>
then it is parsed correctly.
We request blocker flag since using hashed password is not possible in Elytron client configuration file which breaks feature in RFE EAP7-567 Client Side Security (Elytron Client).
- is cloned by
-
ELY-1247 Elytron client configuration file throws ConfigXMLParseException when hashed-password is used
-
- Resolved
-
- is incorporated by
-
-
- Verified
-
