[KARAF-979] access control for shell commands - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Resolved
Priority: Major
Resolution: Implemented
Affects Version/s: 2.2.5
Fix Version/s: None
Component/s: karaf
Labels:
- access
- admin
- command
- console
- permission
- role
- shell
- user

Description

Feature first discussed in mailing list.
@See: http://karaf.922171.n3.nabble.com/shell-commands-amp-user-roles-td3474148.html
------------------------------------------------------------------------------------

Create a means to define more granular level of user access to see (list/autocomplete) and execute commands via the (SSH) shell.
Thus supporting the ability for certain commands be restricted to a configured set of user roles via the command's name or scope.

Really what I'm after is a two level access system. An "admin" level that has full access to all commands, scripting, introspection, etc. And a "user" level of access that perhaps only provides access to a limited number of commands. Additionally "user" level access would disallow scripting and introspection capabilities.

Attachments

Issue Links

is related to

KARAF-1148 Use group in shell/webconsole/MBeanServer

Open

KARAF-1698 Add support for role-based JMX authorization

Resolved

Activity

People

Assignee:: Unassigned

Reporter:: Robert Savage

Votes:: 2 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 02/Nov/11 17:40

Updated:: 15/Sep/18 16:35

Resolved:: 27/May/14 11:35