Description of problem: JSSE module configuration, for example for X509 authentization with Spring Security, does not allow user to specify ${jboss.home} property for instance. How reproducible: Always. Steps to Reproduce: 1. Include following in standalone.xml <security-domain name="certificate"> <authentication> <login-module code="Certificate" flag="required"> <!-- might not be required --> <module-option name="password-stacking" value="useFirstPass" /> <module-option name="securityDomain" value="cert-x509"/> </login-module> </authentication> </security-domain> <security-domain name="cert-x509"> <jsse truststore-url="${jboss.home.dir}/server.jks" truststore-password="password" keystore-url="${jboss.home.dir}/server.jks" keystore-password="password"/> </security-domain> 2. Start application server Actual results: 09:22:21,692 ERROR [org.jboss.as.controller.management-operation] (ServerService Thread Pool – 55) JBAS014612: Operation ("add") failed - address: ([ ("subsystem" => "security"), ("security-domain" => "cert-x509") ]): java.lang.RuntimeException: JBAS013303: Runtime Exception: at org.jboss.as.security.SecurityDomainAdd.processKeyStore(SecurityDomainAdd.java:594) [jboss-as-security-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.security.SecurityDomainAdd.createJSSESecurityDomain(SecurityDomainAdd.java:472) [jboss-as-security-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.security.SecurityDomainAdd.launchServices(SecurityDomainAdd.java:171) [jboss-as-security-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.security.SecurityDomainAdd$1.execute(SecurityDomainAdd.java:159) [jboss-as-security-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.executeStep(AbstractOperationContext.java:387) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.doCompleteStep(AbstractOperationContext.java:274) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.completeStep(AbstractOperationContext.java:202) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.security.SecurityDomainAdd$1.execute(SecurityDomainAdd.java:160) [jboss-as-security-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.executeStep(AbstractOperationContext.java:387) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.doCompleteStep(AbstractOperationContext.java:274) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.completeStep(AbstractOperationContext.java:202) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.security.SecurityDomainAdd$1.execute(SecurityDomainAdd.java:160) [jboss-as-security-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.executeStep(AbstractOperationContext.java:387) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.doCompleteStep(AbstractOperationContext.java:274) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.completeStep(AbstractOperationContext.java:202) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.security.SecurityDomainAdd$1.execute(SecurityDomainAdd.java:160) [jboss-as-security-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.executeStep(AbstractOperationContext.java:387) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.doCompleteStep(AbstractOperationContext.java:274) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.completeStep(AbstractOperationContext.java:202) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.security.SecurityDomainAdd$1.execute(SecurityDomainAdd.java:160) [jboss-as-security-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.executeStep(AbstractOperationContext.java:387) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.doCompleteStep(AbstractOperationContext.java:274) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.completeStep(AbstractOperationContext.java:202) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.security.SecurityDomainAdd$1.execute(SecurityDomainAdd.java:160) [jboss-as-security-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.executeStep(AbstractOperationContext.java:387) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.doCompleteStep(AbstractOperationContext.java:274) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.completeStep(AbstractOperationContext.java:202) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.server.AbstractDeploymentChainStep.execute(AbstractDeploymentChainStep.java:46) [jboss-as-server-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.executeStep(AbstractOperationContext.java:387) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.doCompleteStep(AbstractOperationContext.java:274) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.completeStep(AbstractOperationContext.java:202) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.server.AbstractDeploymentChainStep.execute(AbstractDeploymentChainStep.java:46) [jboss-as-server-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.executeStep(AbstractOperationContext.java:387) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.doCompleteStep(AbstractOperationContext.java:274) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.AbstractOperationContext.completeStep(AbstractOperationContext.java:202) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.controller.ParallelBootOperationStepHandler$ParallelBootTask.run(ParallelBootOperationStepHandler.java:311) [jboss-as-controller-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886) [rt.jar:1.6.0_27] at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908) [rt.jar:1.6.0_27] at java.lang.Thread.run(Thread.java:662) [rt.jar:1.6.0_27] at org.jboss.threads.JBossThread.run(JBossThread.java:122) Caused by: java.net.MalformedURLException: Failed to find url=${jboss.home.dir}/server.jks as a URL, file or resource at org.jboss.security.JBossJSSESecurityDomain.validateStoreURL(JBossJSSESecurityDomain.java:407) [picketbox-4.0.6.final-redhat-1.jar:4.0.6.final-redhat-1] at org.jboss.security.JBossJSSESecurityDomain.setKeyStoreURL(JBossJSSESecurityDomain.java:138) [picketbox-4.0.6.final-redhat-1.jar:4.0.6.final-redhat-1] at org.jboss.as.security.SecurityDomainAdd$5.setKeyStoreURL(SecurityDomainAdd.java:480) [jboss-as-security-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] at org.jboss.as.security.SecurityDomainAdd.processKeyStore(SecurityDomainAdd.java:592) [jboss-as-security-7.1.0.Final-redhat-1.jar:7.1.0.Final-redhat-1] ... 39 more Expected results: It works. Additional info: Workaround is to specify absolute path.
Stefan Guilhen <sguilhen> updated the status of jira JBPAPP-8493 to Closed
Stefan Guilhen <sguilhen> made a comment on jira JBPAPP-8493 Pull request has been merged in time for AS 7.1.2.
Rajesh Rajasekaran <rajesh.rajasekaran> updated the status of jira JBPAPP-8493 to Reopened
Rajesh Rajasekaran <rajesh.rajasekaran> made a comment on jira JBPAPP-8493 Reopening to set Fix Version
Rajesh Rajasekaran <rajesh.rajasekaran> updated the status of jira JBPAPP-8493 to Resolved
Dominik Pospisil <dpospisi> updated the status of jira JBPAPP-8493 to Closed
Dominik Pospisil <dpospisi> made a comment on jira JBPAPP-8493 Verified (ER8).
Verified in EAP 6.0.0.ER6, retargeted to WFK 2.0.0.ER6, which is aligned version.
Closing as CURRENTRELEASE, this is an EAP issue which was fixed.