Details
-
Bug
-
Resolution: Done
-
Major
-
7.1.0.DR7
Description
Definition Credential Store with existing storage file but with wrong store password causes ugly failure-description.
How to reproduce
Prepare credential store file (the easiest way is create credential store from scratch)
/subsystem=elytron/credential-store=cs_pass123:add(uri="cr-store://test/cs/ks-pass123.jceks?store.password=pass123;create.storage=true")
/subsystem=elytron/credential-store=cs_pass123/alias=dbPass:add(secret-value=passwordToDB)
Then I try to create Credential store with wrong store password to existing store file.
/subsystem=elytron/credential-store=cs_wrong_store_pass:add(uri="cr-store://test/cs/ks-pass123.jceks?store.password=pass123wrong;key.password=pass123=true")
I can see this result:
{
"outcome" => "failed",
"failure-description" => {
"WFLYCTL0080: Failed services" => {"org.wildfly.security.credential-store-client.cs_wrong_key_pass" => "org.jboss.msc.service.StartException in service org.wildfly.security.credential-store-client.cs_wrong_key_pass: WFLYELY00004: Unable to start the service.
Caused by: org.wildfly.security.credential.store.CredentialStoreException: ELY09506: Cannot read credential storage file '/home/hsvabek/securityworkspace/VERIFICATION/2016_11_02_UX_testing/jboss-eap-7.1.0.DR7/standalone/data/cs/ks-pass123.jceks' for the store named 'cs_wrong_key_pass'
Caused by: java.io.IOException: Keystore was tampered with, or password was incorrect"},
"WFLYCTL0412: Required services that are not installed:" => ["org.wildfly.security.credential-store-client.cs_wrong_key_pass"],
"WFLYCTL0180: Services with missing/unavailable dependencies" => undefined
},
"rolled-back" => true
}
Suggestion for solution
failure-description must not contain Exception or snippet stacktrace.
Description like that "Password to access credential store is incorrect."
Attachments
Issue Links
- blocks
-
JBEAP-8571 CredentialStore issues
-
- Resolved
-
- is blocked by
-
-
- Verified
-
- is cloned by
-
-
- Resolved
-
- is related to
-
-
- Closed
-
