Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-13732

Elytron, log jdbc-realm key-mapper processing

    XMLWordPrintable

Details

    • Bug
    • Resolution: Duplicate
    • Major
    • 7.2.0.GA.CR1
    • 7.1.0.CR4
    • Security
    • None

    Description

      Customer impact: Low. Without additional logs it can be difficult to troubleshoot jdbc-realm + bcrypt mapping solution.

      User reported problem with getting work jdbc_realm with bcrypt mapper. He had configured org.wildfly.security to log TRACE messages, but log does not provide any useful information regarding mapping password from DB.

      In this case seems problem was in mixing base64 vs. modular crypt format.

      Looking into PasswordKeyMapper there is a lot of logic and lot of steps which can get wrong. So logging some TRACE messages can hint user what is going on and what went wrong.

      Also I have noticed there is unhandled exception. Please at least log some TRACE message.

      PasswordKeyMapper.java
      } catch (InvalidKeySpecException e) {
	// fall out (unlikely but possible)
}

      [1] https://developer.jboss.org/message/977727

      Attachments

        Issue Links

          is cloned by

          Bug - A problem that impairs or prevents the functions of the product. ELY-1436 Log jdbc-realm key-mapper processing

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved
          is duplicated by

          Bug - A problem that impairs or prevents the functions of the product. ELY-1436 Log jdbc-realm key-mapper processing

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved

          Activity

            People

              rhn-support-ivassile Ilia Vassilev
              mchoma@redhat.com Martin Choma
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: