The WildFly 11 release includes a new security framework WildFly Elytron, a number of blog posts are being written by a number of engineers so this article is to try and collect references to them in one location.
Although this initially contains links to blog posts written by the core engineering teams feel free to add links to any blog posts you write yourselves looking at different WildFly Elytron features and also links to other public blog posts you may find out there.
Also if there are topics that may be useful to be blogged about please mention them in the comments, anyone looking for some inspiration to write a blog post will then hopefully have some ideas.
Dynamically Generating KeyStores, TrustStores, and Certificates with WildFly Elytron
Author - Justin Cook
Date - November 2018
An overview of how to use the new Elytron Examples utility for generating KeyStores, TrustStores, and certificates
Using WildFly Elytron JASPI with Standalone Undertow
Author - Darran Lofthouse
Date - October 2018
How to make use of JASPI with a standalone Undertow.
Darran's WildFly Blog: Using WildFly Elytron JASPI with Standalone Undertow
WildFly Elytron - Credential Store - Next Steps
Author - Darran Lofthouse
Date - September 2018
Some of the features we are planning to introduce with the credential store and related issues to be solved.
Darran's WildFly Blog: WildFly Elytron - Credential Store - Next Steps
Reinitializing a Trust Manager through Two-Way SSL
Author - Justin Cook
Date - August 2018
This blog post gives an overview on how to dynamically reload trust managers using the WildFly CLI.
Justin Cook's Blog: Reinitializing a Trust Manager through Two-Way SSL
Obtaining and managing certificates from Let’s Encrypt using the CLI in WildFly 14
Author - Farah Juma
Date - August 2018
This blog post gives an overview on how to obtain and manage certificates from the Let’s Encrypt certificate authority using the WildFly CLI.
Creating custom security realm for WildFly Elytron
Author - Jan Kalina
Date - June 2018
This blog post gives an overview Elytron permission sets.
Honza's blog: Creating custom security realm for WildFly Elytron
Configuring permissions using Elytron in WildFly 13
Author - Farah Juma
Date - June 2018
This blog post gives an overview Elytron permission sets.
Farah Juma's Blog: Configuring permissions using Elytron in WildFly 13
Certificate authentication with password fallback in Elytron
Author - Jan Kalina
Date - May 2018
This tutorial describes configuration of certificate authentication with password (BASIC/PLAIN) fallback authentication for management interface of WildFly using WildFly Elytron.
Honza's blog: Certificate authentication with password fallback in Elytron
Manipulating KeyStores using the CLI in WildFly 12
Author - Farah Juma
Date - March 2018
This blog post gives an overview of the new KeyStore manipulation operations that are available via the CLI in WildFly 12.
Farah Juma's Blog: Manipulating KeyStores using the CLI in WildFly 12
WildFly Elytron - Implementing a Custom HTTP Authentication Mechanism
Author - Darran Lofthouse
Date - February 2018
How to implement a configure a custom HTTP authentication mechanism.
Darran's WildFly Blog: WildFly Elytron - Implementing a Custom HTTP Authentication Mechanism
Filesystem realm in WildFly Elytron
Author - Jan Kalina
Date - January 2018
What is Filesystem realm and how to manage it.
Honza's blog: Filesystem realm in WildFly Elytron
Elytron and Kerberos using gssproxy
Author - Jan Kalina
Date - January 2018
A blog post describing how configure Kerberos authentication in WildFly using Elytron.
Honza's blog: Elytron and Kerberos using gssproxy
Configuration of Kerberos with Elytron in WildFly
Author - Jan Kalina
Date - January 2018
A blog post describing how configure Kerberos authentication in WildFly using Elytron.
Honza's blog: Configuration of Kerberos with Elytron in WildFly
SSL key switch without server restart
Author - Jan Kalina
Date - October 2017
A blog post describing how to switch certificate and key used for SSL without WildFly restart.
Honza's blog: SSL key switch without server restart
Using OpenSSL with Wildfly and Elytron
Author - Stuart Douglas
Date - October 2017
A blog post describing how to use OpenSSL in WildFly.
Using OpenSSL with Wildfly and Elytron
How to use an Elytron SASL mechanism that supports channel binding
Author - Farah Juma
Date - September 2017
This blog post shows how to set up one-way SSL/TLS for the management interface and how to then use a SASL mechanism that supports channel binding to connect to the CLI.
Farah Juma's Blog: How to use an Elytron SASL mechanism that supports channel binding
WildFly Elytron - Add Kerberos Authentication to Existing Web Application
Author - Darran Lofthouse
Date - September 2017
A blog post describing how to override the authentication policy of an existing web application and add SPNEGO authentication to it.
Darran's WildFly Blog: WildFly Elytron - Add Kerberos Authentication To Existing Web Application
Using WildFly Elytron with Undertow Standalone
Author - Darran Lofthouse
Date - September 2017
Although developed for use within the WildFly application server the WildFly Elytron project can also be used in isolation, this blog post demonstrates how it can be used to secure an embedded Undertow server.
Darran's WildFly Blog: Using WildFly Elytron with Undertow Standalone
Getting started with EJBs and Elytron Part 1: Securing EJBs and invoking them from remote clients
Author - Farah Juma
Date - September 2017
This blog post describes how to secure EJBs deployed to WildFly 11 using Elytron and how to invoke them from a standalone remote client using the new Naming Client and EJB Client libraries.
Getting started with EJBs and Elytron Part 2: EJB invocations from remote servers
Author - Farah Juma
Date - September 2017
This blog post describes how to invoke EJBs deployed on a WildFly server instance from another WildFly server instance using Elytron.
Farah Juma's Blog: Getting started with EJBs and Elytron Part 2: EJB invocations from remote servers
WildFly Elytron - Principal Transformers, Realm Mappings, and Principal Decoders
Author - Darran Lofthouse
Date - July 2017
To control the behaviour during authentication and authorization WildFly Elytron supports the use of various transformers, mappers, and decoders - this blog post describes how they fit together in the different stages of authentication.
WildFly Elytron - SSL Configuration
Author - Darran Lofthouse.
Date - February 2016
An early blog post describing how SSL configuration was being centrally defined within a new subsystem. Written early 2016 it is potentially due to be reviewed as exact commands may have evolved since it was written.
Comments