Reputation: 882
Wildfly 26 elytron security domain config is not working
I am trying to migrate an application to wildfly 26, and i am trying to use elytron to secure the application.
I successfully run this commands using the jboss cli
/subsystem=elytron/jdbc-realm=myapp-security-realm:add(principal-query=[{sql="select clave from admin.usuario where usuario = ?", data-source="SISMedicalDS", simple-digest-mapper={algorithm=simple-digest-sha-256,password-index=1}},{sql="select r.nombre, 'Roles' from admin.rol r join admin.perfil p on r.id = p.rol_id join admin.usuario u on u.id = p.usuario_id where u.usuario = ?", data-source="SISMedicalDS", attribute-mapping=[{index=1, to=roles}]}])
/subsystem=elytron/security-domain=myapp-security-domain:add(realms=[{realm=myapp-security-realm}], default-realm=myapp-security-realm, permission-mapper=default-permission-mapper)
/subsystem=elytron/http-authentication-factory=myapp-security-http:add(http-server-mechanism-factory=global, security-domain=myapp-security-domain, mechanism-configurations=[{mechanism-name=FORM}])
/subsystem=undertow/application-security-domain=myapp-application-security-domain:add(http-authentication-factory=myapp-security-http)
And i also changed my jboss-web.xml and web.xml files to the suggested configuration
jboss-web.xml
<!DOCTYPE jboss-web>
<jboss-web xmlns="http://www.jboss.com/xml/ns/javaee"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.jboss.com/xml/ns/javaee http://www.jboss.org/schema/jbossas/jboss-web_13_0.xsd"
version="13.0">
<security-domain>nmedical-application-security-domain</security-domain>
</jboss-web>
web.xml (login config only)
<login-config>
<auth-method>FORM</auth-method>
<realm-name>nmedical-application-security-domain</realm-name>
<form-login-config>
<form-login-page>/login.jsp</form-login-page>
<form-error-page>/login.jsp?error=true</form-error-page>
</form-login-config>
</login-config>
When i try to deploy the application in the wildfly 26 server i always get this error
"WFLYCTL0412: Required services that are not installed:" => ["jboss.security.security-domain.myapp-application-security-domain"]
I have checked the server console and under the web (undertow) subsystem i can see that the myapp-application-security-domain exists, so i really don't know what the problem might be
Any help appreciated
Upvotes: 1
Views: 8333
Answers (2)
Reputation: 882
I finally have it working thanks to diavil response and this post:
What i ended up doing was configuring the security config named other both in the ejb3 and undertow subsystem; it's not a solution that i like too much but it is what it is
Upvotes: 1
Reputation: 111
the namespace jboss.security.security-domain is related to the legacy security and not Elytron. Elytron is probably not enabled in some resource and that resource is referring to the myapp-application-security-domain as a legacy security domain and the error gets thrown.
Upvotes: 1
Related Questions
- WildFly and Java EE security configuration with Elytron
- How to add security domain with Wildfly/Jboss CLI
- Wildfly 16: Security domain specified in jboss-web.xml is ignored
- wildfly security domain not working
- Wildfly 10 - Authentication failure in domain mode
- Security domain not invoked (working)
- Wildfly 9 security domains won't work
- Wildfly 8 security domain works for a simple app but not for a more complex one
- Cannot login using Wildfly security domain
- Automatic deployment of security-domain in WildFly 8.x