Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-8413

Clients using SecurityClientFactory are not authenticated when using Elytron

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Blocker Blocker
    • 11.0.0.Beta1
    • None
    • EJB, Security
    • None
    • Hide

      AS testsuite:

      cd testsuite/integration/basic
      mvn clean test -Delytron -Dwildfly.tmp.enable.elytron.profile.tests=true -Dtest=ServletUnitTestCase
      
      Show
      AS testsuite: cd testsuite/integration/basic mvn clean test -Delytron -Dwildfly.tmp.enable.elytron.profile.tests= true -Dtest=ServletUnitTestCase

      Clients using org.jboss.security.client.SecurityClientFactory are not authenticated when Elytron security is used on the server.

      For instance if a servlet authenticates to call a protected EJB:

      SecurityClient client = SecurityClientFactory.getSecurityClient();
      client.setSimple("user", "password");
      client.login();
      ejb.callProtectedMethod();
      // ...
      

      Clients with such code don't work with Elytron, which makes easy application migration to Elytron impossible.

      Setting priority to blocker as we need to provide a simple migration way.

              fjuma1@redhat.com Farah Juma
              josef.cacek@gmail.com Josef Cacek (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: