Since the Elytron project now has a new site, all of our blog posts on Elytron will be hosted there. Keep an eye on https://wildfly-security.github.io/wildfly-elytron/blog/ for new posts.
Hi all, I'd like to automate the installation of mutual SSL for HTTP using security enable-ssl-http-server command in the CLI: security enable-ssl-http-server --key-store-path=server.keystore --key-store-password=secret --trusted-certificate-path=client.crt --trust-store-file-password=secret… Show more
By default, the enable-ssl-http-server command will try to validate that the client certificate being imported is really trusted. It does this by attempting to build a chain of trust from the certificate to a self-signed certificate belonging to a root CA. Since the certificate being used here was not issued by a trusted certificate authority,…
Hi, I have a simple ear ( one war plus one ejb module ). I'm trying to use Elytron security with wildfly 18.0.1 and AdoptOpenJDK 11. standalone.xml <subsystem xmlns="urn:wildfly:elytron:8.0" final-providers="combined-providers" disallowed-providers="OracleUcrypto"> <security-domains> ... <security-domain name="MyDomain"… Show more
Hi Guys, I started using the latest wildfly version 18.0.0 Final (migrating from wildfly 13.0.0 and 17.0.0 Final) I am using a JSF based web application. I package my application as a .war file. When i deploy my application, the war file gets deployed properly (the status of the war changes from deploying to deployed). I can access the… Show more
Does clearing your cookies help by any chance? ELFlash can throw an ArrayIndexOutOfBoundsException if a cookie contains an invalid value. There is a PR against Mojarra upstream to fix this: https://github.com/eclipse-ee4j/mojarra/pull/4548 The stack trace in the description in the above PR looks the same as the stack trace you're hitting.…
Since the feature development phase for WildFly 19 has now started, we wanted to highlight the security features that we are planning to work on for this release. Planned Features WFLY-12609 Add support for MicroProfile JWT 1.1 Details on what is being planned for this feature can be found here. WFCORE-4150 Support automatically adding and… Show more