Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-10308

PolicyContext.getContext("javax.security.auth.Subject.container")

    XMLWordPrintable

Details

    • Bug
    • Resolution: Won't Do
    • Major
    • None
    • None
    • Security
    • None
    • Hide

      WildFly Elytron doesn't need to be 'enabled' it is already enabled by default, just not in use by default.

      • Configure it to perform HTTP BASIC authentication at the web layer

      The steps so the application use use Elytron based security are: -

      • Add a new user to the application realm, as an example I add a user 'test' with a password of 'password'
      • The test application is using the 'jmx-console' security domain, execute the following CLI command to map this to an Elytron http-authentication-factory: -
      ./subsystem=undertow/application-security-domain=jmx-console:add(http-authentication-factory=application-http-authentication)
      • Deploy SimpleWar.war
      deploy SimpleWar.war
      • Call the web application.
      curl -v http://localhost:8080/SimpleWar/Hello -u test:password
      • the web page will print out the results of the PolicyContext.getContext() call
      Show
      WildFly Elytron doesn't need to be 'enabled' it is already enabled by default, just not in use by default. Configure it to perform HTTP BASIC authentication at the web layer The steps so the application use use Elytron based security are: - Add a new user to the application realm, as an example I add a user 'test' with a password of 'password' The test application is using the 'jmx-console' security domain, execute the following CLI command to map this to an Elytron http-authentication-factory: - ./subsystem=undertow/application-security-domain=jmx-console:add(http-authentication-factory=application-http-authentication) Deploy SimpleWar.war deploy SimpleWar.war Call the web application. curl -v http://localhost:8080/SimpleWar/Hello -u test:password the web page will print out the results of the PolicyContext.getContext() call

    Description

      PolicyContext.getContext("javax.security.auth.Subject.container") returns null when using elytron to protect a web application.

      This should return the authenticated subject.

      Attachments

        Issue Links

          clones

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-14317 [GSS] (7.1.z) PolicyContext.getContext("javax.security.auth.Subject.container")

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          relates to

          Bug - A problem that impairs or prevents the functions of the product. ELY-1537 PolicyContext.getContext("javax.security.auth.Subject.container")

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved

          Activity

            People

              darran.lofthouse@redhat.com Darran Lofthouse
              rhn-engineering-lgao Lin Gao
              Petr Adamec Petr Adamec
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: