Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Blocker
Fix Version/s: 7.1.0.DR12
Affects Version/s: 7.1.0.DR11
Component/s: Security
Labels:
None

CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Release Note Status:
Not Required
Target Release:

7.1.0.GA
Git Pull Request:
https://github.com/wildfly/wildfly-core/pull/2160
Steps to Reproduce:
Hide

generate keystore with password secret_password

keytool -genseckey -storepass secret_password -keystore test.keystore -storetype JCEKS -keypass key_password

get masked string now it is possible using wildfly-elytron-tool.jar (https://issues.jboss.org/browse/JBEAP-9025)

java -jar wildfly-elytron-tool.jar credential-store --add myalias --secret secretpassword --location="test.store1" --uri "cr-store://test.store?modifiable=true;create=true;keyStoreType=JCEKS" --password secret_password --summary --salt 12345678 --iteration 230 --create Alias "myalias" has been successfully stored Credential store command summary: -------------------------------------- /subsystem=elytron/credential-store=test:add(uri="cr-store://test.store?modifiable=true;create=true;keyStoreType=JCEKS",relative-to=jboss.server.data.dir,credential-reference={clear-text="MASK-KAwLfD1BN8WFhZptWsa17G==;12345678;230"}) [mchoma@localhost bin]$

create keystore with that masked password
[standalone@localhost:9990 /] /subsystem=elytron/key-store=a:add(path=test.keystore, relative-to=jboss.server.config.dir, required=true, type=JCEKS, credential-reference= {clear-text=MASK-KAwLfD1BN8WFhZptWsa17G==;12345678;230}
)
{"outcome" => "success"}
Show
generate keystore with password secret_password keytool -genseckey -storepass secret_password -keystore test.keystore -storetype JCEKS -keypass key_password get masked string now it is possible using wildfly-elytron-tool.jar ( https://issues.jboss.org/browse/JBEAP-9025 ) java -jar wildfly-elytron-tool.jar credential-store --add myalias --secret secretpassword --location= "test.store1" --uri "cr-store: //test.store?modifiable= true ;create= true ;keyStoreType=JCEKS" --password secret_password --summary --salt 12345678 --iteration 230 --create Alias "myalias" has been successfully stored Credential store command summary: -------------------------------------- /subsystem=elytron/credential-store=test:add(uri= "cr-store: //test.store?modifiable= true ;create= true ;keyStoreType=JCEKS" ,relative-to=jboss.server.data.dir,credential-reference={clear-text= "MASK-KAwLfD1BN8WFhZptWsa17G==;12345678;230" }) [mchoma@localhost bin]$ create keystore with that masked password [standalone@localhost:9990 /] /subsystem=elytron/key-store=a:add(path=test.keystore, relative-to=jboss.server.config.dir, required=true, type=JCEKS, credential-reference= {clear-text=MASK-KAwLfD1BN8WFhZptWsa17G==;12345678;230} ) {"outcome" => "success"}

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

credential-reference cannot use PBE encrypted credentials AKA masked passwords (MASK-).

blocks

JBEAP-8571 CredentialStore issues

Resolved

clones

ELY-868 credential-reference not able to use masked passwords

Resolved

is cloned by

WFCORE-2278 credential-reference not able to use masked passwords

Resolved

is incorporated by

JBEAP-8294 (7.1.0) Upgrade to WildFly Core to 3.0.0.Beta2

Closed

Assignee:: Peter Skopek

Reporter:: Hynek Švábek (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 2017/01/27 7:29 AM

Updated:: 2024/09/02 4:45 PM

Resolved:: 2017/02/09 3:33 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates