Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-3354

Elytron subsystem does not register capability org.wildfly.security.jacc-policy

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Major
    • 4.0.0.Alpha3
    • None
    • Security
    • None

    Description

      If a jacc-policy is configured in the policy=* resource, a service is installed using the JACC_POLICY_RUNTIME_CAPABILITY, but that capability is never registered with the capability registry.

      The capability is recorded in https://github.com/wildfly/wildfly-capabilities/blob/master/org/wildfly/security/jacc-policy/capability.adoc as non-private, so it should be registered. (Note that the capability.adoc incorrectly describes this as a dynamic cap.

      In WildFly full, the ejb3 and undertow subsystems are using the org.wildfly.security.jacc-policy capability name to look up services, but they too are not recording their requirement for the cap. That's a separate bug, but it can't be fixed until this one is.

      Attachments

        Issue Links

          blocks

          Bug - A problem that impairs or prevents the functions of the product. WFLY-9440 EJB subsystem use org.wildfly.security.jacc-policy capability without registering a requirement for it

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Bug - A problem that impairs or prevents the functions of the product. WFLY-13388 Undertow subsystem use org.wildfly.security.jacc-policy capability without registering a requirement for it

          • Minor - To be worked after urgent, high, and medium priorities are resolved. This term is chosen when the severity of the issue is low, or the complexity or effort to correct it may be higher, relatively speaking. For low priority issues, known workarounds exist or are not needed due to the trivial effort needed to address the issue.
          • Open

          Activity

            People

              bstansbe@redhat.com Brian Stansberry
              bstansbe@redhat.com Brian Stansberry
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: