Bug 1069885
Summary: | [GSS] (6.3.0) SecureIdentityLoginModule (and ConfiguredIdentityLoginModule) results are not cached by the JAAS cache | |||
---|---|---|---|---|
Product: | [JBoss] JBoss Enterprise Application Platform 6 | Reporter: | Derek Horton <dehort> | |
Component: | Security | Assignee: | Derek Horton <dehort> | |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Josef Cacek <jcacek> | |
Severity: | unspecified | Docs Contact: | Russell Dickenson <rdickens> | |
Priority: | unspecified | |||
Version: | 6.1.1 | CC: | dehort, hmlnarik, nsriniva, smumford, twells | |
Target Milestone: | ER4 | |||
Target Release: | EAP 6.3.0 | |||
Hardware: | Unspecified | |||
OS: | Unspecified | |||
Whiteboard: | ||||
Fixed In Version: | Doc Type: | Bug Fix | ||
Doc Text: |
In previous versions of JBoss EAP 6 performance issues were encountered when using the `SecureIdentityLoginModule` not caching encrypted datasource passwords. This was caused by JAAS cache not allowing the cache key to be null when the application using the datasource was not secured.
In this release of the product the vault is used for encrypting database passwords, bypassing the JAAS login module and resolving the performance issues.
|
Story Points: | --- | |
Clone Of: | ||||
: | 1069886 (view as bug list) | Environment: | ||
Last Closed: | 2014-06-28 15:27:53 UTC | Type: | Bug | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | ||||
Bug Blocks: | 1069886 |
Description
Derek Horton
2014-02-25 20:55:59 UTC
Derek Horton <dhorton> updated the status of jira SECURITY-803 to Resolved Fix committed to: https://svn.jboss.org/repos/picketbox/branches/eap62 https://svn.jboss.org/repos/picketbox/trunk Verified in 6.3.0.ER4 |