Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-2903

Elytron, remove case-sensistive attribute from security realm configurations

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Critical
    • 3.0.0.Beta27
    • None
    • Security
    • None

    Description

      case-sensitive attribute with default value to false introduced in DR16 is making problem using kerberos authentication.

      WFLYELY00918: Invalid user name 'jduke@JBOSS.ORG' because the realm fileSystemRealm only supports lower case alias names

      It is common to have uppercase realm name in kerberos authentication. User can workaround issue, but it is really unexpected to not work out of box.

      • case-sensitive = true
      • use principal-transformer 'jduke@JBOSS.ORG' -> 'jduke'
          "case-sensitive" => {
        "type" => BOOLEAN,
        "description" => "Case sensitivity of the properties realm. If case insensitive only lower usernames are allowed.",
        "expressions-allowed" => false,
        "required" => false,
        "nillable" => true,
        "default" => false,
        "access-type" => "read-write",
        "storage" => "configuration",
        "restart-required" => "resource-services"
    }

      Attachments

        Issue Links

          blocks

          Bug - A problem that impairs or prevents the functions of the product. WFLY-8919 Elytron, remove case-sensistive attribute from security realm configurations

          • Blocker - To be worked above all other priorities. This term is chosen when the severity of the issue is very high, has no workaround, or the effort for the change is comparatively low. Issues that may be very publicly visible and could generate significant media attention may also drive a higher priority.
          • Closed
          clones

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-10255 Elytron, remove case-sensistive attribute from security realm configurations

          • Blocker - To be worked above all other priorities. This term is chosen when the severity of the issue is very high, has no workaround, or the effort for the change is comparatively low. Issues that may be very publicly visible and could generate significant media attention may also drive a higher priority.
          • Verified

          Activity

            People

              yborgess1@redhat.com Yeray Borges Santana
              yborgess1@redhat.com Yeray Borges Santana
              Martin Choma Martin Choma
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: