Uploaded image for project: 'WildFly Elytron'
  1. WildFly Elytron
  2. ELY-1204

RealmIdentity should have a three-argument version of getCredential()

    XMLWordPrintable

Details

    Description

      I observe that there is no method overload for RealmIdentity#getCredential() which accepts an AlgorithmParameterSpec as the CredentialSource types do. This theoretically limits the range of selectivity of credentials that can be used by a mechanism; though things like salt or nonce are usually derived from the stored credential rather than the other way around, it is possible that there are other parameters which might have an impact on the selection of the appropriate credential (like realm name, as I think this issue is about).

      An appropriate three-argument overload can be added to this interface as a default method. An additional applyToCredential method can also be added accordingly. An additional getCredentialAcquireSupport method should be added as well; though it could be default, the default implementation would be less than optimal as it would have to delegate to getCredential to function properly.

      It might be a good idea to add this overload now while the compatibility impact would be minimal; in this case, the new getCredentialAcquireSupport method would not have to be default (instead, the two-argument form could be made default or removed completely in favor of the three-argument version).

      Attachments

        Issue Links

          causes

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-8700 Pass additional information to Elytron Realm getCredential method

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Verified
          duplicates

          Bug - A problem that impairs or prevents the functions of the product. ELY-927 Pass additional information to Elytron Realm getCredential method

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved
          is related to

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-6003 Elytron properties-realm enforces REALM_NAME comment even if plain-text attribute is true

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Verified

          Activity

            People

              dlloyd@redhat.com David Lloyd
              dlloyd@redhat.com David Lloyd
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: