Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-5650

Adding management user newly requires reload

    XMLWordPrintable

Details

    • Hide
      1. Run server: ./standalone.sh
      2. Add management user: ./add-user.sh jbond pass007
      3. Try to connect: ./jboss-cli.sh -c --user=jbond --password=pass007
        Output: 
        Failed to connect to the controller: Unable to authenticate against controller at localhost:9990: Authentication failed: all available authentication mechanisms failed:
   DIGEST-MD5: javax.security.sasl.SaslException: DIGEST-MD5: Server rejected authentication
      4. Reload: ./jboss-cli.sh -c --commands=reload
      5. Try to connect again: ./jboss-cli.sh -c --user=jbond --password=pass007
        Success: [standalone@localhost:9990]
      Show
      Run server: ./standalone.sh Add management user: ./add-user.sh jbond pass007 Try to connect: ./jboss-cli.sh -c --user=jbond --password=pass007 Output: Failed to connect to the controller: Unable to authenticate against controller at localhost:9990: Authentication failed: all available authentication mechanisms failed: DIGEST-MD5: javax.security.sasl.SaslException: DIGEST-MD5: Server rejected authentication Reload: ./jboss-cli.sh -c --commands=reload Try to connect again: ./jboss-cli.sh -c --user=jbond --password=pass007 Success: [standalone@localhost:9990]
    • Workaround Exists
    • Hide

      The properties-realm can be reloaded using the CLI without needing to reload the whole server.

      Show
      The properties-realm can be reloaded using the CLI without needing to reload the whole server.

    Description

      After adding management user customer needs to reload server to be able to log in with the created user. This is regression compared to previous version 24.

      This affects obviously web console users as well.

      In the old implementation the lastModified method was used to reload the properties file if needed (see here). But when switching to elytron this is not done anymore.

      The full reload of the server can be avoided just re-loading the properties realm used for management:

      /subsystem=elytron/properties-realm=ManagementRealm:load()

      Attachments

        Issue Links

          is cloned by

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-22603 Adding management user newly requires reload

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Verified

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-23621 (7.4.z) WFCORE-5650 - Adding management user newly requires reload

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Verified

          Activity

            People

              rhn-support-rmartinc Ricardo Martin Camarero
              rhn-support-rmartinc Ricardo Martin Camarero
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: