Uploaded image for project: 'ActiveMQ Classic'
  1. ActiveMQ Classic
  2. AMQ-6867

Multiple permissions of shiro in AMQ do not work

    XMLWordPrintableJSON

Details

    Description

      I changed the default authorization plugin to "shiro" authrization plugin and started testing it. Firstly I give all permissions to a role and it works. But when I set two permissions actions(write,admin) to a "role", producer cannot run and throw the exception("subject(user) is not authorized to create destination : ..."). After it, I changed permissions to "admin,write" and the exception became to "subject(user) is not authorized to write destination : ..." .
      It seems that only the permission action which is in the first place is been set to the effective permission to a "role".
      Anyone have any idea of it? THX

      Here is my config file("shiro.ini"):
      [main]

      [users]
      dmqs=dmqs,advisory,queue

      [roles]
      advisory = topic:ActiveMQ.Advisory*
      queue = queue:queue.*:read,admin

      Attachments

        Activity

          People

            Unassigned Unassigned
            bowiehzy Bowie HU
            Votes:
            1 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:

              Time Tracking

                Estimated:
                Original Estimate - 194h
                194h
                Remaining:
                Remaining Estimate - 194h
                194h
                Logged:
                Time Spent - Not Specified
                Not Specified