Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-5696

Credential store expression resolution not usable for deployment descriptors and annotations.

    XMLWordPrintable

Details

    Description

      The legacy vault integration caused a VaultPropertyResolver to be registered for deployment descriptor processing, we need an equivalent for Elytron's encrypted expression support.

      Due to the way it was integrated Vault needed to be passed between various resources in constructors so references were available - the expression resolution in Elytron is available as a capability.

      This may mean the EE DUPs can use the capability API to discover it instead. One point to be cautious about is avoiding a direct dependency on the Elytron subsystem as this should be optional.

      This should also include annotation processing:
      https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html/how_to_configure_server_security/securely_storing_credentials#use_an_encrypted_sensitive_string_in_an_application

      Attachments

        Issue Links

          Activity

            People

              bstansbe@redhat.com Brian Stansberry
              darran.lofthouse@redhat.com Darran Lofthouse
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: