Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-2463

Configuring more password types should be allowed for Elytron filesystem-realm identity in management model

XMLWordPrintable

    • Hide

      Start server with standalone-elytron.xml and run following CLI commands:

      /subsystem=elytron/filesystem-realm=fsrealm:add(path=/tmp/fsrealm)
/subsystem=elytron/filesystem-realm=fsrealm/identity=admin:add()
/subsystem=elytron/filesystem-realm=fsrealm/identity=admin:set-password(digest={algorithm=digest-md5,password=password1,realm=realm},clear={password=password2})

      Check /tmp/fsrealm/a/d/admin.xml file that only bcrypt password is used.

      Show
      Start server with standalone-elytron.xml and run following CLI commands: /subsystem=elytron/filesystem-realm=fsrealm:add(path=/tmp/fsrealm) /subsystem=elytron/filesystem-realm=fsrealm/identity=admin:add() /subsystem=elytron/filesystem-realm=fsrealm/identity=admin:set-password(digest={algorithm=digest-md5,password=password1,realm=realm},clear={password=password2}) Check /tmp/fsrealm/a/d/admin.xml file that only bcrypt password is used.

      In case when two password type are part of set-password operation for identity of Elytron filesystem-realm then only first of them is used and others are discarded. Configuring multiple credentials for one identity should be supported [1].

      [1] https://issues.jboss.org/browse/WFLY-7584?focusedCommentId=13322919&page=com.atlassian.jira.plugin.system.issuetabpanels%3Acomment-tabpanel#comment-13322919

            psilva@redhat.com Pedro Igor Craveiro
            olukas Ondrej Lukas (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: