Hi all!
Our team is migrating our application from JBoss 5 to Wildfly 26.
One small part of our app uses ModelControllerClient to manage logging levels. This creates a remote+http connection to localhost port 9990. This has been working fine until I made changes to the JMX config to use mutual auth over TLS with SCRAM-SHA-512-PLUS SASL authentication mechanism. This new change is working fine, but also caused the management of logging levels to break.
Is there a way where http+remote connections from localhost can bypass any authentication and connections (i.e. remote+https) being initiated from outside the server require authentication? Or is there a way to manipulate logging levels within the Java application without using the ModelControllerClient?
Also does the jboss-cli use http+remote to connect? Because that is working.
Thanks everyone!
This is just a portion of the stacktrace:
Caused by: java.io.IOException: java.net.ConnectException: WFLYPRT0053: Could not connect to remote+http://localhost:9990. The connection failed
Caused by: java.net.ConnectException: WFLYPRT0053: Could not connect to remote+http://localhost:9990. The connection failed
at org.jboss.as.protocol.ProtocolConnectionUtils.checkFuture(ProtocolConnectionUtils.java:142)
at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeForResult(AbstractModelControllerClient.java:149)
Caused by: javax.security.sasl.SaslException: Authentication failed: none of the mechanisms presented by the server (JBOSS-LOCAL-USER, DIGEST-MD5) are supported
at org.jboss.remoting3.remote.ClientConnectionOpenListener$Capabilities.handleEvent(ClientConnectionOpenListener.java:443)
