Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-6475

Elytron kerberos implementation ignores java.security.krb5.* system properties

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Critical
    • None
    • 7.1.0.DR6
    • Security
    • None

    Description

      I don't see any behavior change, when I set standard java.security.krb5.* system properties. Trying to set properties in both ways:

      • command line 
         
-Djava.security.krb5.conf=/unreal/path  -Djava.security.krb5.debug=true -Djava.security.krb5.kdc=wrong.kdc -Djava.security.krb5.realm=REDHAT.COM
      • standalone.xml 
                <property name="java.security.krb5.conf" value="/etc/krb5.confBUG"/>
        <property name="java.security.krb5.kdc" value="localhost.localhostBUG"/>
        <property name="java.security.krb5.realm" value="JBOSS.ORGBUG"/>
        <property name="java.security.krb5.debug" value="true"/>

      Biggest problem as I see is user is unable to change krb5.conf location. In legacy security solution it was possible.

      Attachments

        Issue Links

          is cloned by

          Bug - A problem that impairs or prevents the functions of the product. WFLY-7334 Elytron kerberos implementation ignore java.security.krb5.* system properties

          • Critical - To be worked on immediately following BLOCKER issues.
          • Closed

          Activity

            People

              jkalina@redhat.com Jan Kalina (Inactive)
              mchoma@redhat.com Martin Choma
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: