1352418 – [GSS](6.4.z) The fix for BZ1243553 breaks PolicyContext("javax.security.auth.subject.container") in CXF web service with STS

Bug 1352418 - [GSS](6.4.z) The fix for BZ1243553 breaks PolicyContext("javax.security.auth.subject.container") in CXF web service with STS

Summary: [GSS](6.4.z) The fix for BZ1243553 breaks PolicyContext("javax.security.auth....

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	JBoss Enterprise Application Platform 6
Classification:	JBoss
Component:	Security
Sub Component:
Version:	6.4.8
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	CR1
Target Release:	EAP 6.4.20
Assignee:	jboss-set
QA Contact:	Pavel Slavicek
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	eap6420-payload
TreeView+	depends on / blocked

Reported:	2016-07-04 06:38 UTC by Hisanobu Okuda
Modified:	2020-01-17 15:49 UTC (History)
CC List:	9 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2019-08-19 12:44:09 UTC
Type:	Bug
Embargoed:

Attachments	(Terms of Use)
SimpleSecurityManager.java.diff (692 bytes, text/plain) 2017-05-16 02:55 UTC, Hisanobu Okuda	no flags	Details
security domain settings (1.87 KB, text/plain) 2017-06-09 12:32 UTC, Petr Jurak	no flags	Details
JAX-WS settings (581 bytes, text/plain) 2017-06-09 12:32 UTC, Petr Jurak	no flags	Details
STS Provider (15.86 KB, application/zip) 2017-06-09 12:34 UTC, Petr Jurak	no flags	Details
Service provider (12.86 KB, application/zip) 2017-06-09 12:35 UTC, Petr Jurak	no flags	Details
WS Client (7.63 KB, application/zip) 2017-06-09 12:36 UTC, Petr Jurak	no flags	Details
Exception thrown during test (7.30 KB, text/plain) 2017-06-09 12:44 UTC, Petr Jurak	no flags	Details
Output if all is good (5.49 KB, text/plain) 2017-06-09 12:45 UTC, Petr Jurak	no flags	Details
View All

Links
System	ID	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	JBEAP-11601	Critical	Closed	[GSS](7.1.z) The fix for WFLY-4625 breaks PolicyContext("javax.security.auth.subject.container") in CXF web service with...	2019-09-08 22:30:30 UTC
Red Hat Issue Tracker	JBEAP-11602	Major	Pull Request Sent	(7.0.z) The fix for WFLY-4625 breaks PolicyContext("javax.security.auth.subject.container") in CXF web service with STS	2019-09-08 22:30:30 UTC
Red Hat Issue Tracker	JBEAP-13887	Major	Closed	(7.2.0) The fix for WFLY-4625 breaks PolicyContext("javax.security.auth.subject.container") in CXF web service with STS	2019-09-08 22:30:31 UTC
Red Hat Issue Tracker	WFLY-8946	Major	Resolved	The fix for WFLY-4625 breaks PolicyContext("javax.security.auth.subject.container") in CXF web service with STS	2019-09-08 22:30:31 UTC

Description Hisanobu Okuda 2016-07-04 06:38:27 UTC

Description of problem:
Since EAP6.4.4, PolicyContext("javax.security.auth.subject.container") in CXF web service with STS returns null.

Version-Release number of selected component (if applicable):


How reproducible:


Steps to Reproduce:
1.
2.
3.

Actual results:


Expected results:


Additional info:

Comment 3 Hisanobu Okuda 2017-05-16 02:55:14 UTC

Created attachment 1279195 [details]
SimpleSecurityManager.java.diff

Comment 6 Petr Jurak 2017-06-09 12:32:10 UTC

Created attachment 1286401 [details]
security domain settings

Comment 7 Petr Jurak 2017-06-09 12:32:48 UTC

Created attachment 1286402 [details]
JAX-WS settings

Comment 8 Petr Jurak 2017-06-09 12:34:43 UTC

Created attachment 1286403 [details]
STS Provider

Comment 9 Petr Jurak 2017-06-09 12:35:36 UTC

Created attachment 1286404 [details]
Service provider

Comment 10 Petr Jurak 2017-06-09 12:36:24 UTC

Created attachment 1286406 [details]
WS Client

Comment 11 Petr Jurak 2017-06-09 12:44:27 UTC

Created attachment 1286407 [details]
Exception thrown during test

Comment 12 Petr Jurak 2017-06-09 12:45:19 UTC

Created attachment 1286408 [details]
Output if all is good

Comment 13 Petr Jurak 2017-06-09 12:50:11 UTC

How to reproduce:
1. Start EAP 6.4
2. Run jboss-cli.sh --file=add-security-domain.cli
3. Run jboss-cli.sh --file=add-jaxws-endpoint.cli
4. Restart server
5. Deploy STS Provider application
6. Deploy Service Provider application
7. Run WS client and observe server log.

Actual results:
 exception is thrown (see attached exception.txt)

Expected results:
 no exception should be thrown, method should be invoked and PolicyContext.getContext("javax.security.auth.Subject.container") should not be null
 see attached log output
 note: this result I got with applied fix

Comment 29 Jiří Bílek 2018-04-27 11:59:54 UTC

Regression tests passed
Verified with EAP 6.4.20.CP.CR1

Note You need to log in before you can comment on or make changes to this bug.