Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-25131

[GSS](7.4.z) WFCORE-6424 - Generic command argument value issue with List containing Object

    XMLWordPrintable

Details

    Description

      Hello team,

      When adding sasl authentication factory with below cli command,

      ~~~~

      standalone@127.0.0.1

      :9990 /] saslauthenticationfactory add --name=UnicreditLDAP-sasl-authentication --sasl-server-factory=UnicreditLDAP-sasl-factory --security-domain=UnicreditLDAP_SD --mechanism-configurations=[{mechanism-name=PLAIN,mechanism-realm-configurations=[\{realm-name=UnicreditLDAP_LR}]}]

      ~~~~

      The result is below, where we can see <mechanism-realm realm-name="UnicreditLDAP_LR"/> is outside of <mechanism mechanism-name="PLAIN"/>

      ~~~~

      <sasl-authentication-factory name="UnicreditLDAP-sasl-authentication" sasl-server-factory="UnicreditLDAP-sasl-factory" security-domain="UnicreditLDAP_SD">
      <mechanism-configuration>
      <mechanism mechanism-name="PLAIN"/>
      <mechanism>
      <mechanism-realm realm-name="UnicreditLDAP_LR"/>
      </mechanism>
      </mechanism-configuration>
      </sasl-authentication-factory>

      ~~~~

      But same is working find if this cli command is used,

      /subsystem=elytron/sasl-authentication-factory=UnicreditLDAP-sasl-authentication:add(sasl-server-factory=UnicreditLDAP-sasl-factory,security-domain=UnicreditLDAP_SD,mechanism-configurations=[{mechanism-name=PLAIN,mechanism-realm-configurations=[\{realm-name=UnicreditLDAP_LR}]}])

      Same is observed for http-authentication-factory.

      I have reproduced this in My end.

      Platform: RHEL 8, EAP 7.4.10, jdk17

      Similar issue observed for another cli command while adding security domain.

      It giving ERROR as WFLYCTL0155: 'realm' may not be null

      ~~~~

      standalone@127.0.0.1

      :9990 /] esecuritydomain add --name=UnicreditLDAP_SD --realms=\\{realm=UnicreditLDAP_LR,role-decoder=from-roles-attribute},\\{realm=local,role-mapper=super-user-mapper} --default-realm=UnicreditLDAP_LR --permission-mapper=default-permission-mapper

      WFLYCTL0155: 'realm' may not be null
      ~~~~

      But if we use the alternative CLI command it works,

      ~~~~

      [standalone@127.0.0.1:9990 /] /subsystem=elytron/security-domain=UnicreditLDAP_SD:add(realms=\\{realm=UnicreditLDAP_LR,role-decoder=from-roles-attribute},\\{realm=local,role-mapper=super-user-mapper},default-realm=UnicreditLDAP_LR,permission-mapper=default-permission-mapper)
      {"outcome" : "success"}

      ~~~~

      Previously I have raised an EAPSUP.

      Engineering team has confirmed this as a bug on CLI and asked me to raise a JBEAP, can you please check.

      Attachments

        Issue Links

          clones

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-25184 (8.0.0) WFCORE-6424 - Generic command argument value issue with List containing Object

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Bug - A problem that impairs or prevents the functions of the product. WFCORE-6424 Generic command argument value issue with List containing Object

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          is incorporated by

          Component Upgrade - A task tracking an update to a bundled component or revision of component upstream of the project. JBEAP-25033 (7.4.z) Upgrade WildFly Core from 15.0.29.Final-redhat-00001 to 15.0.30.Final-redhat-00001

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              jdenise@redhat.com Jean Francois Denise
              rhn-support-ssaharoy Sayan Saha Roy
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: