Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Critical
Fix Version/s: RH-SSO-7.6.1
Affects Version/s: RH-SSO-7.6.0
Component/s: OpenShift - xPaaS
Labels:
- rh-sso-release-candidate

Blocked:
False
Blocked Reason:
None
Ready:
False
Epic Link:
RHSSO-2106
Affects:

Compatibility/Configuration, User Experience
Workaround:

Workaround Exists
Workaround Description:
Hide

Till the updated RH-SSO container image, containing the correction is available:

Either don't use any XML special characters in environment variables passed to the image,

Or escape that special XML character in the environment variable value (if correlated circumstances specific to this env var allow it to be escaped).
Show
Till the updated RH-SSO container image, containing the correction is available: Either don't use any XML special characters in environment variables passed to the image, Or escape that special XML character in the environment variable value (if correlated circumstances specific to this env var allow it to be escaped).
Git Pull Request:
https://github.com/jboss-container-images/redhat-sso-7-openshift-image/pull/263
Steps to Reproduce:

Hide

See the accompanied SSOSUP-207 ticket.

Show
See the accompanied SSOSUP-207 ticket.

Sprint:
CIAM Sprint 23

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

Using some of XML special characters in the value of some environment variable, passed to the RH-SSO container image (mainly env vars holding passwords or dynamically generated values) leads to malformed XML configuration file, subsequently followed by a RH-SSO pod startup failure.

This issue is related to previous CLOUD-3198, but additional (on top of ~~CLOUD-3198~~ fix) is necessary, because the original fix escaped just the ampersand (&) and semicolon (;) characters, and only, when specified as part of the JDBC URL string.

We need to extend the original fix to escape all five of the XML special characters

clones

RHSSO-2017 [RH-SSO 7.5.X container images] Escape all XML special characters (AKA incomplete fix for CLOUD-3198)

Closed

is related to

CLOUD-3198 [EAP7] When user supplies a JDBC connection URL, parts of the URL will be ignored

relates to

RHSSO-2018 [RH-SSO 7.5.2+ container images] Add a pre-launch check to throw an error message when generated standalone-openshift.xml XML configuration file is invalid / malformed

Closed

mentioned on

Issue - Implement XMLEscapeCharactersTest

Assignee:: Ján Lieskovský (Inactive)

Reporter:: Ján Lieskovský (Inactive)

Involved:: Ivan Khomyn

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2022/10/05 5:41 PM

Updated:: 2022/11/02 11:38 AM

Resolved:: 2022/10/13 4:48 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates