Profile Photo
Hi,   Are anyone able to inject SecurityContext in Wildfly 14? This is not yet implemented on CDI?     Thanks!
in WildFly
Profile Photo
We are securing http-remoting by using self-signed certificate and our custom TrustManager. To point to our TrustManager and truststore dynamically at wildfly start, we have following code in a startup ejb class:   Security.addProvider(new MySecurityProvider());           Security.setProperty("ssl.KeyManagerFactory.algorithm", ......);… (Show more)
in WildFly
Profile Photo
Hello.   I'm using wildfly 12 and create a example for mutual ssl secured and work fine. My question is: Is possible define a one URL to do Mutual ssl secured and others URLs without "mutual secured"?   In normal test case occur:   access: https://localhost:8443 - In this case the server require a certificate     A form I wanted:   access:… (Show more)
in WildFly
Profile Photo
Hi I am upgrading from Wildfly 10 to Wildfly 14.01   I was able to login from a standalone EJB Client using SASL  with the following with the following security-realms with  no issue 1. jdbc-realm 2. properties-realm I am however unable to login from standalone EJB client using ldap-realm with SASL.   I tested my configuration by logging in… (Show more)
in WildFly
Profile Photo
Hello,   I was recently investigating an issue with sessions in our application and tracked it down to InMemorySessionManager. In the local class SessionImpl there is a method getAttribute: @Override public Object getAttribute(final String name) {    if (invalid) {    throw UndertowMessages.MESSAGES.sessionNotFound(sessionId);   }  … (Show more)
in WildFly
Profile Photo
I want to assign permissions to client-level roles to do so I create policies for the client-level roles which need to be assigned to permissions. I need to assign these policies for client-level roles to permission via REST from my project but I can't find the REST URI in documentation and project.
in WildFly
Profile Photo
I tried deploying an app when WildFly was started in domain mode but even though I had defined the security domain, under the elytron subsystem of the profile that I was starting the server group with WIldFly failed to recognize them. It was only when I deployed the same security domain under the legacy security system that the deployment was… (Show more)
in WildFly
Profile Photo
I am trying to configure client-cert authentication on WildFly 13. When I generate my certificates using keytool everything works fine, but when I generate the same cert with KeyStore Explorer (I am sure they are the same in terms of fields) I get the following log from wildlfy:   09:43:07,034 TRACE [org.wildfly.security] (default task-1)… (Show more)
in WildFly
Profile Photo
Hi, I have an application running on wildfly 8.2.1Final and I added the below property to the standalone.xml   <system-properties>     <property name="org.apache.catalina.authenticator.AuthenticatorBase.CHANGE_SESSIONID_ON_AUTH" value="true"/> </system-properties>   But still I am getting the same Jsessionid before and after login.   Please… (Show more)
in WildFly
Profile Photo
Hi   We saw illegal reflective access warnings using Wildfly and Java 9/10 for different classes during the last couple of months. We know this is related to Java's module system. The most recent occurrence is with Wildfly 14 and Java 10:   WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by… (Show more)
in WildFly
Load more items