Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-13688

Elytron, wrong capabilities registered

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • 7.2.0.CD12
    • 7.1.0.CR4
    • Security
    • None

      Customer impact: Low. CLI let you configure trust-manager resource on places where it has no sense (where credential store is expected). It will fall afterwards.

      I wen throught resources and

      • trust-manager is registered as credential-store besides trust-manager
      • some *-principal-decoder are registered as principal-transformer besided principal-decoder
                  "trust-manager" => {
                "description" => "A trust manager definition for creating the TrustManager[] as used to create an SSLContext.",
                "model-description" => {"*" => {
                    "description" => "A trust manager definition for creating the TrustManager[] as used to create an SSLContext.",
                    "capabilities" => [
                        {
                            "name" => "org.wildfly.security.trust-manager",
                            "dynamic" => true
                        },
                        {
                            "name" => "org.wildfly.security.credential-store",
                            "dynamic" => true
                        }
                    ],

            "constant-principal-decoder" => {
                "description" => "Definition of a principal decoder that always returns the same constant.",
                "model-description" => {"*" => {
                    "description" => "Definition of a principal decoder that always returns the same constant.",
                    "capabilities" => [
                        {
                            "name" => "org.wildfly.security.principal-transformer",
                            "dynamic" => true
                        },
                        {
                            "name" => "org.wildfly.security.principal-decoder",
                            "dynamic" => true
                        }
                    ],

            "x500-attribute-principal-decoder" => {
                "description" => "Definition of a X.500 attribute based principal decoder",
                "model-description" => {"*" => {
                    "description" => "Definition of a X.500 attribute based principal decoder",
                    "capabilities" => [
                        {
                            "name" => "org.wildfly.security.principal-transformer",
                            "dynamic" => true
                        },
                        {
                            "name" => "org.wildfly.security.principal-decoder",
                            "dynamic" => true
                        }
                    ],

            "concatenating-principal-decoder" => {
                "description" => "A principal decoder definition where the principal decoder is a concatenation of other principal decoders.",
                "model-description" => {"*" => {
                    "description" => "A principal decoder definition where the principal decoder is a concatenation of other principal decoders.",
                    "capabilities" => [
                        {
                            "name" => "org.wildfly.security.principal-transformer",
                            "dynamic" => true
                        },
                        {
                            "name" => "org.wildfly.security.principal-decoder",
                            "dynamic" => true
                        }
                    ],

              rhn-support-ivassile Ilia Vassilev
              mchoma@redhat.com Martin Choma
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated:
                Resolved: