New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[WFLY-13679] Make legacy security optional for "org.wildfly.iiop-openjdk" #14360
Conversation
@chengfang / @tadamski Could you please review this PR? The overall approach is that all configurations that require PicketBox classes have a requirement on the legacy security subsystem being present and we know if that is present PicketBox will be present - other than that we can assume the module dependency is optional. |
Looking at failed CI jobs, those errors seem to be real:
|
…ctivated. If legacy security is available we know the required org.picketbox module will be present. Update the layer and WildFly preview to default to Elytron.
…ing as legacy security is removed.
…ble-microprofile.cli
I have just pushed again, hopefully this will address the failure that was appearing. |
Hi @chengfang / @tadamski CI is now green so I think we are ready to continue. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM but shouldn't iiop-openjdk (non legacy) feature group be set by default in all the configurations?
At this time the intent was just to get to the point PicketBox can be flagged as being optional. There will be a follow up task later where we change all the default configurations to be Elytron only but we have some other tasks to work through first. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
ahh ok, I'm approving then
https://issues.redhat.com/browse/WFLY-13679
This also corrects the configuration in WildFly Preview which presently assumes it is using legacy security even though the subsystem is not provisioned.