-
Bug
-
Resolution: Done
-
Major
-
7.1.0.DR7
Definition Credential Store with existing storage file but with wrong store password causes ugly failure-description.
How to reproduce
Prepare credential store file (the easiest way is create credential store from scratch)
/subsystem=elytron/credential-store=cs_pass123:add(uri="cr-store://test/cs/ks-pass123.jceks?store.password=pass123;create.storage=true")
/subsystem=elytron/credential-store=cs_pass123/alias=dbPass:add(secret-value=passwordToDB)
Then I try to create Credential store with wrong store password to existing store file.
/subsystem=elytron/credential-store=cs_wrong_store_pass:add(uri="cr-store://test/cs/ks-pass123.jceks?store.password=pass123wrong;key.password=pass123=true")
I can see this result:
{ "outcome" => "failed", "failure-description" => { "WFLYCTL0080: Failed services" => {"org.wildfly.security.credential-store-client.cs_wrong_key_pass" => "org.jboss.msc.service.StartException in service org.wildfly.security.credential-store-client.cs_wrong_key_pass: WFLYELY00004: Unable to start the service. Caused by: org.wildfly.security.credential.store.CredentialStoreException: ELY09506: Cannot read credential storage file '/home/hsvabek/securityworkspace/VERIFICATION/2016_11_02_UX_testing/jboss-eap-7.1.0.DR7/standalone/data/cs/ks-pass123.jceks' for the store named 'cs_wrong_key_pass' Caused by: java.io.IOException: Keystore was tampered with, or password was incorrect"}, "WFLYCTL0412: Required services that are not installed:" => ["org.wildfly.security.credential-store-client.cs_wrong_key_pass"], "WFLYCTL0180: Services with missing/unavailable dependencies" => undefined }, "rolled-back" => true }
Suggestion for solution
failure-description must not contain Exception or snippet stacktrace.
Description like that "Password to access credential store is incorrect."
- blocks
-
JBEAP-8571 CredentialStore issues
- Resolved
- is blocked by
-
JBEAP-9862 Operation failure descriptions following service start failures are overly noisy.
- Closed
- is cloned by
-
WFCORE-2375 Definition Credential Store with existing storage file but with wrong store password causes ugly failure-description.
- Resolved
- is related to
-
JBEAP-6886 Complicated failure-descriptions in Elytron simple-permission-mapper
- Closed