Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-2245

credential-reference capability-reference constraint

    XMLWordPrintable

Details

    • Bug
    • Status: Resolved (View Workflow)
    • Major
    • Resolution: Duplicate
    • None
    • None
    • Security
    • None

    Description

      There attribute credential-reference is defined in many subsystems as below. Looks like the capability-reference constraint should be set in the "store" field of the value-type, therefore I request a review on this capability-constraint placement.

       "credential-reference" => {
          "type" => OBJECT,
          "description" => "Credential (from Credential Store) to authenticate on data source",
          "expressions-allowed" => false,
          "required" => false,
          "nillable" => true,
          "capability-reference" => "org.wildfly.security.credential-store",
          "access-constraints" => {"sensitive" => {
              "credential" => {"type" => "core"},
              "data-source-security" => {"type" => "datasources"}
          }},
          "value-type" => {
              "store" => {
                  "type" => STRING,
                  "description" => "The name of the credential store holding the alias to credential",
                  "expressions-allowed" => false,
                  "required" => false,
                  "nillable" => true,
                  "min-length" => 1L,
                  "max-length" => 2147483647L
              },
              "alias" => {
                  "type" => STRING,
                  "description" => "The alias which denotes stored secret or credential in the store",
                  "expressions-allowed" => false,
                  "required" => false,
                  "nillable" => true,
                  "min-length" => 1L,
                  "max-length" => 2147483647L
              },
              "type" => {
                  "type" => STRING,
                  "description" => "The type of credential this reference is denoting",
                  "expressions-allowed" => false,
                  "required" => false,
                  "nillable" => true,
                  "min-length" => 1L,
                  "max-length" => 2147483647L
              },
              "clear-text" => {
                  "type" => STRING,
                  "description" => "Secret specified using clear text (check credential store way of supplying credential/secrets to services)",
                  "expressions-allowed" => false,
                  "required" => false,
                  "nillable" => true,
                  "min-length" => 1L,
                  "max-length" => 2147483647L
              }
          },
          "access-type" => "read-write",
          "storage" => "configuration",
          "restart-required" => "all-services"
      },
      

      Attachments

        Issue Links

          Activity

            People

              bstansbe@redhat.com Brian Stansberry
              cmiranda@redhat.com Claudio Miranda
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: