Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Minor
Fix Version/s: 7.4.4.CR1, 7.4.4.GA
Affects Version/s: None
Component/s: Management, Security
Labels:
- JDK17

Blocked:
False
Ready:
False
CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
QE Test Coverage:
+
Target Release:

7.4.z.GA
Git Pull Request:
https://github.com/jbossas/wildfly-core-eap/pull/1115
Steps to Reproduce:
Hide

1) Unzip EAP 7.4
2) cd jboss-eap-7.4
2) rm -rf standalone/tmp
3) Copy the attached standalone-se17.xml file to the standalone/configuration dir
4) bin/standalone.sh -c=standalone-se17.xml
5) Open another shell in the same dir
6) bin/jboss-cli.sh -c

Expected results:

The CLI automatically authenticates as it is local to the server.

$ bin/jboss-cli.sh -c [standalone@localhost:9990 /]

Actual results:

The CLI can't authenticate using local authentication so the user is prompted for a login.

$ bin/jboss-cli.sh -c Authenticating against security realm: ManagementRealm Username:

If you kill the CLI process, mkdir -p standalone/tmp/auth and try again to start the CLI it will connect.
Show
1) Unzip EAP 7.4 2) cd jboss-eap-7.4 2) rm -rf standalone/tmp 3) Copy the attached standalone-se17.xml file to the standalone/configuration dir 4) bin/standalone.sh -c=standalone-se17.xml 5) Open another shell in the same dir 6) bin/jboss-cli.sh -c Expected results: The CLI automatically authenticates as it is local to the server. $ bin/jboss-cli.sh -c [standalone@localhost:9990 /] Actual results: The CLI can't authenticate using local authentication so the user is prompted for a login. $ bin/jboss-cli.sh -c Authenticating against security realm: ManagementRealm Username: If you kill the CLI process, mkdir -p standalone/tmp/auth and try again to start the CLI it will connect.
Market:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

The JBOSS_LOCAL_USER authentication mechanism requires that the ${jboss.server.tmp.dir}/auth directory exists, but the only code in the server that ensures it exists is only invoked if a legacy security-realm is configured.

This has cropped up in testing work with SE 17 where the configs we are using can't include legacy security and some of the installations under test don't include the tmp/auth dir.

I mark this as minor as our standard installation zip includes the tmp/auth dir, so this is more a problem if it is removed. So not a big deal from an end user point of view. But it's important to get it fixed for our own testing needs.

Upstream this was corrected as part of the work removing legacy security altogether, so we just need to port that fix.

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

standalone-se17.xml
17 kB
2022/01/18 7:08 PM

blocks

JBEAP-22870 (7.4.z) Fix testsuite/integration/rts failures on SE 17

Closed

JBEAP-22871 (7.4.z) Fix testsuite/integration/xts failures on SE 17

Closed

JBEAP-22872 (7.4.z) Fix testsuite/integration/multinode failures on SE 17

Closed

JBEAP-22873 (7.4.z) Fix testsuite/integration/domain failures on SE 17

Closed

JBEAP-23165 (7.4.z) (WFCORE) Fix testsuite/integration/domain failures on SE 17

Closed

is incorporated by

JBEAP-22913 (7.4.z) Upgrade WildFly Core from 15.0.6.Final-redhat-00003 to 15.0.7.Final-redhat-00001

Closed

(1 is incorporated by)

Assignee:: Brian Stansberry

Reporter:: Brian Stansberry

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2022/01/18 6:42 PM

Updated:: 2024/08/19 2:03 PM

Resolved:: 2022/02/08 9:24 AM

Details

Description

Attachments

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates