-
Bug
-
Resolution: Done
-
Major
-
26.0.1.Final
-
None
The ElytronSASClientInterceptor needs PrivilegedActions for the SecurityDomain interactions, this class is configured at the subsystem level so deployments should not need the permissions for this class to function correctly.
Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("org.wildfly.security.permission.ElytronPermission" "getSecurityDomain")" in code source "(vfs:/content/client.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.client.jar" from Service Module Loader") at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:309) at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:201) at org.wildfly.security.auth.server.SecurityDomain.getCurrent(SecurityDomain.java:168) at org.wildfly.iiop.openjdk.csiv2.ElytronSASClientInterceptor.send_request(ElytronSASClientInterceptor.java:171)
