Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[WFLY-16555] Add tests and docs for HTTP Digest persisted in HTTP session #16897

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[WFLY-16555] Add tests and docs for HTTP Digest persisted in HTTP session #16897

wants to merge 1 commit into from

Conversation

Skyllarr
Copy link
Contributor

@Skyllarr Skyllarr commented Jun 1, 2023

@github-actions github-actions bot added the deps-ok Dependencies have been checked, and there are no significant changes label Jun 1, 2023
@bstansberry bstansberry added core-upgrade-needed PR requires a wildfly-core change to be merged and integrated first Feature-Docs PR documents a new feature coming via WildFly Core labels Jul 17, 2023
@Skyllarr Skyllarr requested a review from fjuma September 5, 2023 08:52
fjuma
fjuma reviewed Sep 5, 2023
View reviewed changes
docs/src/main/asciidoc/_elytron/Elytron_Subsystem.adoc
@@ -93,8 +93,8 @@ server factories.
the SASL server factory is an aggregation of other SASL server
factories.

|configurable-http-server-mechanism-factory |A SASL server factory
definition where the SASL server factory is an aggregation of other SASL
|configurable-http-server-mechanism-factory |An HTTP server factory
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Since this change is unrelated to this RFE and would be good to get included soon, what do you think about creating a good first issue for this update instead?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@Skyllarr I think this comment still needs to be addressed.

@fjuma fjuma requested a review from darranl January 3, 2024 15:25
@darranl darranl requested a review from pferraro March 8, 2024 14:54
darranl
darranl reviewed Mar 8, 2024
View reviewed changes
docs/src/main/asciidoc/_elytron/migrate/SSL_with_Client_Cert_Migration.adoc
@@ -164,6 +164,24 @@ Resulting in: -
</subsystem>
----

If you want to use the HTTP DIGEST authentication mechanism with a load balancer, you can add the following property to the HTTP server mechanism factory:
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I am thinking this may need a bit more detail to it.

If they have multiple app server instances in front of a load balancer they also need their HTTP Session to be replicated otherwise the same issue would remain. Maybe there should also be a bit more "why" in the docs.

darranl
darranl reviewed Mar 8, 2024
View reviewed changes
Copy link
Contributor

@darranl darranl left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Generally looks good, just my comment about maybe adding a bit more detail to the docs.

pferraro
pferraro requested changes Mar 8, 2024
View reviewed changes
.../src/test/java/org/wildfly/test/manual/elytron/digest/session/HttpSessionDigestTestCase.java
import java.util.stream.Collectors;

@RunWith(Arquillian.class)
public class HttpSessionDigestTestCase {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please relocate this test here (alongside clustering tests for other auth mechanisms):
https://github.com/wildfly/wildfly/tree/main/testsuite/integration/clustering/src/test/java/org/jboss/as/test/clustering/cluster/web/authentication

.../src/test/java/org/wildfly/test/manual/elytron/digest/session/HttpSessionDigestTestCase.java
@Test
@RunAsClient
@InSequence(1)
public void setup() throws Exception {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

N.B. Once migrated to clustering testsuite, this method should go away.

.../src/test/java/org/wildfly/test/manual/elytron/digest/session/HttpSessionDigestTestCase.java
Comment on lines +101 to +102
configureServerWithFSRealmAndSessionDigestProperty(new CLIWrapper(LOCALHOST, MGMT_PORT_NODE_1, true));
configureServerWithFSRealmAndSessionDigestProperty(new CLIWrapper(LOCALHOST, MGMT_PORT_NODE_2, true));
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Replace this with a ManagementServerSetupTask.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bstansberry bstansberry bstansberry left review comments

@darranl darranl darranl left review comments

@fjuma fjuma fjuma left review comments

@pferraro pferraro pferraro requested changes

Assignees
No one assigned
Labels
core-upgrade-needed PR requires a wildfly-core change to be merged and integrated first deps-ok Dependencies have been checked, and there are no significant changes Feature-Docs PR documents a new feature coming via WildFly Core
Projects
None yet
Milestone
No milestone
5 participants
@Skyllarr @bstansberry @pferraro @darranl @fjuma