Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-14919

Credential store expression resolution not usable for deployment descriptors and annotations.

XMLWordPrintable

    • Undefined

      The legacy vault integration caused a VaultPropertyResolver to be registered for deployment descriptor processing, we need an equivalent for Elytron's encrypted expression support.

      Due to the way it was integrated Vault needed to be passed between various resources in constructors so references were available - the expression resolution in Elytron is available as a capability.

      This may mean the EE DUPs can use the capability API to discover it instead. One point to be cautious about is avoiding a direct dependency on the Elytron subsystem as this should be optional.

      This should also include annotation processing:
      https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html/how_to_configure_server_security/securely_storing_credentials#use_an_encrypted_sensitive_string_in_an_application

              bstansbe@redhat.com Brian Stansberry
              darran.lofthouse@redhat.com Darran Lofthouse
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: