Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-9047

Elements defined in 'jboss-ejb-security_1_1.xsd' must be optional

    Details

    • Steps to Reproduce:
      Hide

      Validate the following 'jboss-ejb3.xml' file:

      <?xml version="1.0" encoding="UTF-8"?>
      <jboss:ejb-jar xmlns:jboss="http://www.jboss.com/xml/ns/javaee" 
                     xmlns:jee="http://java.sun.com/xml/ns/javaee"
                     xmlns:s="urn:security:1.1"
                     xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
                     xsi:schemaLocation="http://www.jboss.com/xml/ns/javaee http://www.jboss.org/j2ee/schema/jboss-ejb3-2_0.xsd
                                         http://java.sun.com/xml/ns/javaee http://www.jboss.org/j2ee/schema/jboss-ejb3-spec-2_0.xsd
                                         urn:security:1.1 http://www.jboss.org/schema/jbossas/jboss-ejb-security_1_1.xsd"
                     version="3.1" impl-version="2.0">
          <jee:assembly-descriptor>
              <s:security>
                  <jee:ejb-name>*</jee:ejb-name>
                  <s:security-domain>SomeSecurityDomain</s:security-domain>
                  <!-- 
                  <s:run-as-principal>SomeUser</s:run-as-principal>
                  -->
                  <s:missing-method-permissions-deny-access>true</s:missing-method-permissions-deny-access>
              </s:security>
          </jee:assembly-descriptor>
      </jboss:ejb-jar>
      

      Show
      Validate the following 'jboss-ejb3.xml' file: <?xml version="1.0" encoding="UTF-8"?> <jboss:ejb-jar xmlns:jboss="http://www.jboss.com/xml/ns/javaee" xmlns:jee="http://java.sun.com/xml/ns/javaee" xmlns:s="urn:security:1.1" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.jboss.com/xml/ns/javaee http://www.jboss.org/j2ee/schema/jboss-ejb3-2_0.xsd http://java.sun.com/xml/ns/javaee http://www.jboss.org/j2ee/schema/jboss-ejb3-spec-2_0.xsd urn:security:1.1 http://www.jboss.org/schema/jbossas/jboss-ejb-security_1_1.xsd" version="3.1" impl-version="2.0"> <jee:assembly-descriptor> <s:security> <jee:ejb-name>*</jee:ejb-name> <s:security-domain>SomeSecurityDomain</s:security-domain> <!-- <s:run-as-principal>SomeUser</s:run-as-principal> --> <s:missing-method-permissions-deny-access>true</s:missing-method-permissions-deny-access> </s:security> </jee:assembly-descriptor> </jboss:ejb-jar>

      Description

      Wildfly does not validate the 'jboss-ejb3.xml' file during startup, but when trying do validate a 'jboss-ejb3.xml' file externally the following elements are mandatory, even though they aren't:

      • security-domain
      • run-as-principal
      • missing-method-permissions-deny-access

      The jboss-ejb-security_1_1.xsd should be changed to have these elements optional.

      Like:

        ...
        <xs:element name="security-domain" type="xs:string" minOccurs="0"/>
        <xs:element name="run-as-principal" type="xs:string" minOccurs="0"/>
        <xs:element name="missing-method-permissions-deny-access" type="xs:boolean" minOccurs="0">
        ...
      

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  istudens Ivo Studensky
                  Reporter:
                  jbaesner Jörg Bäsner
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  2 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: