Details

    • Type: Bug
    • Status: New (View Workflow)
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 7.3.1.GA
    • Fix Version/s: 7.3.3.GA
    • Component/s: EJB
    • Labels:
      None
    • Target Release:
    • Steps to Reproduce:
      Hide

      unzip -d $JBOSS_HOME/ simplied-app-reproducer.zip
      The test that fails:
      http://localhost:8080/reproducer/rest/test

      Show
      unzip -d $JBOSS_HOME/ simplied-app-reproducer.zip The test that fails: http://localhost:8080/reproducer/rest/test
    • Workaround Description:
      Hide

      Set the truststore on the command line for the jvm
      ./bin/standalone.sh -Djavax.net.ssl.trustStore=./standalone/configuration/application.keystore -Djavax.net.ssl.trustStorePassword=password

      Show
      Set the truststore on the command line for the jvm ./bin/standalone.sh -Djavax.net.ssl.trustStore=./standalone/configuration/application.keystore -Djavax.net.ssl.trustStorePassword=password

      Description

      For picketbox when I tried to configure the default config which uses picketbox where I added the truststore, but for some reason I get the SSL error indicating the truststore is not set, so I set the system properties to be able to run the test.

      The client app is calling an EJB in the same JVM, where the self generated keystore is being used. Setting the truststore to the same keystore via the truststore tag in the ApplicationRealm does not work, setting the ./bin/standalone.sh -Djavax.net.ssl.trustStore=./standalone/configuration/application.keystore -Djavax.net.ssl.trustStorePassword=password does work.

                  <security-realm name="ApplicationRealm">
                      <server-identities>
                          <ssl>
                              <keystore path="application.keystore" relative-to="jboss.server.config.dir" keystore-password="password" alias="server" key-password="password" generate-self-signed-certificate-host="localhost"/>
                          </ssl>
                      </server-identities>
                      <authentication>
                          <local default-user="$local" allowed-users="*" skip-group-loading="true"/>
                          <truststore path="application.keystore" relative-to="jboss.server.config.dir" keystore-password="password"/>
                          <properties path="application-users.properties" relative-to="jboss.server.config.dir"/>
                      </authentication>
                      <authorization>
                          <properties path="application-roles.properties" relative-to="jboss.server.config.dir"/>
                      </authorization>
                  </security-realm>
      

      TestSingleton -> EJB_ONE -> EJB_TWO -> EJB_THREE
      ]
      I configured it using picketbox/ApplicationRealm and for some reason the truststore does not get used, I had to specify the truststore on the command line:

      ./bin/standalone.sh -Djavax.net.ssl.trustStore=./standalone/configuration/application.keystore -Djavax.net.ssl.trustStorePassword=password

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                mshikalw Moulali Shikalwadi
                Reporter:
                bmaxwell Brad Maxwell
              • Votes:
                1 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated: