New Security Features in WildFly 26.1
Since WildFly 26.1 was just released, we wanted to highlight some new security features included in this release.
The Elytron authentication client now provides a Java security provider that can be used
to register a JVM wide default
SSLContext. When this provider is registered with high enough
priority, all client libraries that use
SSLContext.getDefault() will obtain an
using the configuration from your Elytron client configuration file. For more details about this new feature
and an example of how to use it, check out this
It’s now possible to encrypt the identity files that back filesystem security realms using a secret key.
For all the details about this new feature and a complete guide on how to configure a
with encryption enabled, take a look at this blog post.
If you already have a
filesystem-realm configured, it’s possible to encrypt it using a new Elytron Tool
command. Check out this blog post
for all the details on how to do this.
read-aliases operations for key stores in the Elytron subsystem have been updated
to improve usability. Check out this blog post to learn more.
Since WildFly 25, applications deployed to WildFly can be secured with OpenID Connect, without needing to use the Keycloak client adapter.
In a recent vlog, we show how to use this feature with WildFly on OpenShift.
As always, the WildFly Elytron project welcomes your contributions!
Our contribution guide helps guide you through the steps for getting started on the WildFly Elytron project and goes through how to format and submit your first PR.
We have created a list of good first issues to help you get started.
If you’d like some help or have questions about making contributions to our project, feel free to reach us on chat or add questions directly on your PR.
This blog post has given an overview of some new security features in WildFly. Be sure to check out our blog posts page, where we have all our blog posts on Elytron features. If there is an Elytron topic you’d like to see a blog post on, feel free to let us know on WildFly’s user forum.
To learn more about Elytron, check out our site.