Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-14919

Credential store expression resolution not usable for deployment descriptors and annotations.

XMLWordPrintable

    • Undefined

      The legacy vault integration caused a VaultPropertyResolver to be registered for deployment descriptor processing, we need an equivalent for Elytron's encrypted expression support.

      Due to the way it was integrated Vault needed to be passed between various resources in constructors so references were available - the expression resolution in Elytron is available as a capability.

      This may mean the EE DUPs can use the capability API to discover it instead. One point to be cautious about is avoiding a direct dependency on the Elytron subsystem as this should be optional.

      This should also include annotation processing:
      https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html/how_to_configure_server_security/securely_storing_credentials#use_an_encrypted_sensitive_string_in_an_application

            bstansbe@redhat.com Brian Stansberry
            darran.lofthouse@redhat.com Darran Lofthouse
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: