Bug 1272011

Summary:	[GSS](6.4.z) Configuring security-domain causes JBAS014803 Duplicate resource error
Product:	[JBoss] JBoss Enterprise Application Platform 6	Reporter:	Takayuki Konishi <tkonishi>
Component:	Web Console	Assignee:	Chao Wang <chaowan>
Status:	CLOSED CURRENTRELEASE	QA Contact:	Pavel Jelinek <pjelinek>
Severity:	unspecified	Docs Contact:
Priority:	unspecified
Version:	6.4.3	CC:	bbaranow, bmaxwell, brian.stansberry, cdewolf, chaowan, dpospisi, hbraun, hpehl, jkudrnac, jtruhlar, mcada, pjelinek
Target Milestone:	CR1
Target Release:	EAP 6.4.7
Hardware:	Unspecified
OS:	Unspecified
Whiteboard:
Fixed In Version:		Doc Type:	Bug Fix
Doc Text:		Story Points:	---
Clone Of:		Environment:
Last Closed:	2017-01-17 11:54:43 UTC	Type:	Bug
Regression:	---	Mount Type:	---
Documentation:	---	CRM:
Verified Versions:		Category:	---
oVirt Team:	---	RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---	Target Upstream Version:
Embargoed:
Bug Depends On:
Bug Blocks:	1274291, 1279552

Description Takayuki Konishi 2015-10-15 09:33:36 UTC

Description of problem:
Configuring security-domain causes JBAS014803 Duplicate resource error

How reproducible: 100%

Steps to Reproduce:
1. Start JBoss EAP  
2. Open http://localhost:9990/console/App.html#security-domains from a browse
3. Add a security domain
4. Click "View" link of the created security domain
5. Add an authentication login module (ex. Code: foo, Flag: required)
6. Add a module option

Actual results:
The module option is added.

Expected results:
"Failed to modify login-modules" [1] was shown in the notification center area.
The module option was not added.

Additional info:
After I went back to Security Domains page then clicked "View" link, I could add a module option. So it seems login module "foo" is registered halfway before I moved to other page.

Module options in Authorization, Mapping and Audit tab also cause same error.


[1]
Failed to modify login-modules

Unexpected HTTP response: 500

Request
{
    "operation" => "composite",
    "address" => [],
    "steps" => [
        {
            "operation" => "add",
            "address" => [
                ("subsystem" => "security"),
                ("security-domain" => "foo"),
                ("authentication" => "classic")
            ]
        },
        {
            "operation" => "write-attribute",
            "address" => [
                ("subsystem" => "security"),
                ("security-domain" => "foo"),
                ("authentication" => "classic")
            ],
            "name" => "login-modules",
            "value" => [{
                "code" => "bar",
                "flag" => "required",
                "module-options" => [("baz" => "hoge")]
            }]
        }
    ]
}

Response

Internal Server Error
{
    "outcome" => "failed",
    "result" => {
        "step-1" => {
            "outcome" => "failed",
            "failure-description" => "JBAS014803: Duplicate resource [
    (\"subsystem\" => \"security\"),
    (\"security-domain\" => \"foo\"),
    (\"authentication\" => \"classic\")
]",
            "rolled-back" => true
        },
        "step-2" => {"outcome" => undefined}
    },
    "failure-description" => {"JBAS014653: Composite operation failed and was rolled back. Steps that failed:" => {"Operation step-1" => "JBAS014803: Duplicate resource [
    (\"subsystem\" => \"security\"),
    (\"security-domain\" => \"foo\"),
    (\"authentication\" => \"classic\")
]"}},
    "rolled-back" => true,
    "response-headers" => {"process-state" => "reload-required"}
}

Comment 5 Michael Cada 2016-03-03 15:36:18 UTC

Verified on EAP 6.4.7.CP.CR2

Comment 6 Petr Penicka 2017-01-17 11:54:43 UTC

Retroactively bulk-closing issues from released EAP 6.4 cumulative patches.