Uploaded image for project: 'Karaf'
  1. Karaf
  2. KARAF-4636

karaf.secured.command.compulsory.roles does not work

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Critical
    • Resolution: Fixed
    • 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.5
    • 4.1.0, 4.0.6
    • karaf
    • None

    Description

      The karaf.secured.command.compulsory.roles property in system.properties does not work in Karaf [4.0.1, 4.0.5].

      It does work in Karaf [3.0.5, 3.0.7].

      Easy way to test this is modify users.properties with the following:

      viewer = karaf,_g_:viewergroup
_g_\:viewergroup = group,viewer

      And then add 

      karaf.secured.command.compulsory.roles=admin

      to system.properties.

      If you log in as viewer, Karaf will allow the execution of commands that do not have ACL defined.

      Attachments

        Issue Links

          Blocked

          Improvement - An improvement or enhancement to an existing feature or task. KARAF-3823 introduce karaf.secured.command.compulsory.roles system property

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              ffang Freeman Yue Fang
              kevo_tool Kevin O'Toole
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: