Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 7.1.0.DR10
Affects Version/s: 7.1.0.DR7
Component/s: Security, User Experience
Labels:
None

CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Target Release:

7.1.0.GA

SFDC Cases Counter:
SFDC Cases Links:

Please change these attributes to "expressions-allowed" => true if reasonable

/configurable-sasl-server-factory/protocol
/configurable-sasl-server-factory/server-name

/filesystem-realm/levels

/token-realm/public-key
/token-realm/principal-claim
/token-realm/oauth2-introspection/host-name-verification-policy
/token-realm/oauth2-introspection/introspection-url
/token-realm/oauth2-introspection/client-secret
/token-realm/oauth2-introspection/client-id
/token-realm/oauth2-introspection/public-key
/token-realm/oauth2-introspection/token-realm

/jdbc-realm/principal-query/sql
/jdbc-realm/principal-query/data-source
/jdbc-realm/clear-password-mapper/password-index
/jdbc-realm/bcrypt-mapper/password-index
/jdbc-realm/bcrypt-mapper/salt-index
/jdbc-realm/bcrypt-mapper/iteration-count-index
/jdbc-realm/salted-simple-digest-mapper/algorithm
/jdbc-realm/salted-simple-digest-mapper/password-index
/jdbc-realm/salted-simple-digest-mapper/salt-index
/jdbc-realm/simple-digest-mapper/password-index
/jdbc-realm/scram-mapper/algorithm
/jdbc-realm/scram-mapper/password-index
/jdbc-realm/scram-mapper/salt-index
/jdbc-realm/scram-mapper/iteration-count-index

/security-domain/default-realm 

These applies to key-store and key-manager:
*/credential-reference/store
*/credential-reference/alias
*/credential-reference/type
*/credential-reference/clear-text

These are not marked as capability reference. But seems referencing another service, so not sure if it is issue in these cases:

/jdbc-realm/principal-query/data-source
/security-domain/default-realm
/credential-reference/store

"Collection of primitives" , e.g. LIST of STRING, OBJECT of STRING :

/configurable-sasl-server-factory/properties
/custom-role-mapper/configuration
/mapped-regex-realm-mapper/realm-map
/x500-attribute-principal-decoder/required-oids
/custom-permission-mapper/configuration
/configurable-http-server-mechanism-factory/properties
/custom-name-rewriter/configuration
/custom-principal-decoder/configuration
/custom-realm-mapper/configuration
/custom-modifiable-realm/configuration
/custom-credential-security-factory/configuration
/custom-role-decoder/configuration
/custom-realm/configuration

clones

WFLY-7499 Elytron "expressions-allowed" => false attributes

Closed

is incorporated by

JBEAP-7954 Upgrade to Elytron Subsystem 1.0.0.Alpha17

Verified

JBEAP-8073 Upgrade WildFly Elytron Subsystem to 1.0.0.Alpha18

Verified

relates to

JBEAP-8175 Allow expressions in credential-reference attributes

Verified

Assignee:: Ilia Vassilev

Reporter:: Martin Choma

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2016/11/08 9:01 AM

Updated:: 2017/01/10 3:24 AM

Resolved:: 2016/12/19 8:03 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates