Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-8076

datasources and resource-adapter subsystems: credential-reference and password should be mutually exclusive

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • 11.0.0.Alpha1
    • None
    • JCA, Security
    • None
    • User Experience

      credential-reference and password should be mutually exclusive, they should have alternatives set

                  "password" => {
                      "type" => STRING,
                      "description" => "Specifies the password used when creating a new connection",
                      "expressions-allowed" => true,
                      "required" => false,
                      "nillable" => true,
                      "requires" => ["user-name"],
                      "min-length" => 1L,
                      "max-length" => 2147483647L,
                      "access-constraints" => {"sensitive" => {
                          "credential" => {"type" => "core"},
                          "data-source-security" => {"type" => "datasources"}
                      }},
                      "access-type" => "read-write",
                      "storage" => "configuration",
                      "restart-required" => "no-services"
                  },
                "credential-reference" => {
                      "type" => OBJECT,
                      "description" => "Credential (from Credential Store) to authenticate on data source",
                      "expressions-allowed" => false,
                      "required" => false,
                      "nillable" => true,
                      "capability-reference" => "org.wildfly.security.credential-store",
                      "access-constraints" => {"sensitive" => {
                          "credential" => {"type" => "core"},
                          "data-source-security" => {"type" => "datasources"}
                      }},
                      "value-type" => {
                          "store" => {
                              "type" => STRING,
                              "description" => "The name of the credential store holding the alias to credential",
                              "expressions-allowed" => false,
                              "required" => false,
                              "nillable" => true,
                              "min-length" => 1L,
                              "max-length" => 2147483647L
                          },
                          "alias" => {
                              "type" => STRING,
                              "description" => "The alias which denotes stored secret or credential in the store",
                              "expressions-allowed" => false,
                              "required" => false,
                              "nillable" => true,
                              "min-length" => 1L,
                              "max-length" => 2147483647L
                          },
                          "type" => {
                              "type" => STRING,
                              "description" => "The type of credential this reference is denoting",
                              "expressions-allowed" => false,
                              "required" => false,
                              "nillable" => true,
                              "min-length" => 1L,
                              "max-length" => 2147483647L
                          },
                          "clear-text" => {
                              "type" => STRING,
                              "description" => "Secret specified using clear text (check credential store way of supplying credential/secrets to services)",
                              "expressions-allowed" => false,
                              "required" => false,
                              "nillable" => true,
                              "min-length" => 1L,
                              "max-length" => 2147483647L
                          }
                      },
                      "access-type" => "read-write",
                      "storage" => "configuration",
                      "restart-required" => "all-services"
                  }
      

              smaestri@redhat.com Stefano Maestri
              smaestri@redhat.com Stefano Maestri
              Martin Simka Martin Simka
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: