Uploaded image for project: 'Karaf'
  1. Karaf
  2. KARAF-5527

the karaf.secured.command.compulsory.roles should only affect command ACL rules

          Details

          • Type: Bug
          • Status: Resolved
          • Priority: Major
          • Resolution: Fixed
          • Affects Version/s: None
          • Fix Version/s: 4.1.4, 4.2.0.M2
          • Component/s: None
          • Labels:
            None

            Description

            for the JMX ACL rules, it's hierarchical and hence we can simply add

            *=admin

            to the root jmx.acl.cfg to enforce all mbean operations without more specific match to be admin role.

            Currently enable karaf.secured.command.compulsory.roles also take effect for the JMX ACL rules which prevent the upper hierarchy rules take effect

              Attachments

                Activity

                  People

                  • Assignee:
                    ffang Freeman Fang
                    Reporter:
                    ffang Freeman Fang
                  • Votes:
                    0 Vote for this issue
                    Watchers:
                    2 Start watching this issue

                    Dates

                    • Created:
                      Updated:
                      Resolved: