Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Blocker
Fix Version/s: 7.1.0.DR19
Affects Version/s: 7.1.0.DR12
Component/s: Security
Labels:

CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Release Note Status:
Not Required
Target Release:

7.1.0.GA
Steps to Reproduce:
Hide

See BasicAuthnTestCase in https://github.com/wildfly/wildfly/pull/9619.

Add user1 to a filesystem realm (lowercase 'u'):

/subsystem=elytron/filesystem-realm=ApplicationFsRealm/identity=user1:add() /subsystem=elytron/filesystem-realm=ApplicationFsRealm/identity=user1:set-password(clear={password="password1"}) /subsystem=elytron/filesystem-realm=ApplicationFsRealm/identity=user1:add-attribute(name=groups, value=["Users","Role1"])

Try to log into application (mapped to the filesystem realm) as User1 (uppercase 'U') - it fails on Linux, but it passes on Windows.
Show
See BasicAuthnTestCase in https://github.com/wildfly/wildfly/pull/9619 . Add user1 to a filesystem realm (lowercase 'u'): /subsystem=elytron/filesystem-realm=ApplicationFsRealm/identity=user1:add() /subsystem=elytron/filesystem-realm=ApplicationFsRealm/identity=user1:set-password(clear={password= "password1" }) /subsystem=elytron/filesystem-realm=ApplicationFsRealm/identity=user1:add-attribute(name=groups, value=[ "Users" , "Role1" ]) Try to log into application (mapped to the filesystem realm) as User1 (uppercase 'U') - it fails on Linux, but it passes on Windows.

SFDC Cases Counter:
SFDC Cases Links:

User names are case sensitive on Linux but not on Windows when using the Elytron FileSystemSecurityRealm

This is IMO a security issue. And it also affects platform certifications.

If this is by any chance an expected behavior, then it has to be emphasized in documentation and in the domain model too (description of file-system-realm)

is cloned by

ELY-945 User names in Elytron FileSystemRealm are not case sensitive on Windows

Resolved

WFCORE-2560 User names in Elytron FileSystemRealm are not case sensitive on Windows

Resolved

is incorporated by

JBEAP-9571 (7.1.0) Upgrade to WildFly Core to 3.0.0.Beta13

Verified

JBEAP-10845 (7.1.0) Upgrade to WildFly Core to 3.0.0.Beta23

Verified

JBEAP-11020 Upgrade WildFly Elytron to 1.1.0.Beta44

Verified

relates to

JBEAP-10255 Elytron, remove case-sensistive attribute from security realm configurations

Verified

(1 relates to)

Assignee:: Jan Kalina (Inactive)

Reporter:: Josef Cacek (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Created:: 2017/02/13 3:07 PM

Updated:: 2017/06/02 8:00 AM

Resolved:: 2017/05/18 10:48 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates