Details
-
Bug
-
Resolution: Done
-
Major
-
7.1.0.DR8
-
None
Description
1. Step 2 of section Configure the JBoss EAP Server contains the following information:
Start the JBoss EAP server by typing the following:
For Linux: EAP7_HOME/bin/standalone.sh For Windows: EAP7_HOME\bin\standalone.bat
As of EAP 7.1.0.DR8, the configuration changes contained in CLI script mentioned in step 4 cannot be applied in standalone profile, the server needs to be started with standalone-elytron.xml configuration, so the step should be changed to the following:
Start the JBoss EAP server by typing the following:
For Linux: EAP7_HOME/bin/standalone.sh -c standalone-elytron.xml For Windows: EAP7_HOME\bin\standalone.bat -c standalone-elytron.xml
Step 1 of section Remove the Security Domain Configuration by Running the JBoss CLI Script contains the same issue.
2. The expected output for unauthorised access read out in section Access the Application is incorrect:
Now close the browser. Open a new browser and log in with username guest and password guestPwd1!. The browser will display the following error:
HTTP Status 403 - Access to the requested resource has been denied type Status report message Access to the requested resource has been denied description Access to the specified resource (Access to the requested resource has been denied) has been forbidden.
Currently, the whole response the user gets to see in the quickstart looks like this:
Forbidden
Attachments
Issue Links
- is related to
-
JBEAP-6705 Remove startup argument from servlet-security README when Elytron is included by default
- Verified
-
JBEAP-6200 Adapt servlet-security example to use Elytron
- Verified