Qpid
  1. Qpid
  2. QPID-2759

remove defunct jmxremote.access file user management rights manipulation abilities

    Details

    • Type: Bug Bug
    • Status: Resolved
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 0.7, 0.8, 0.9, 0.10
    • Fix Version/s: 0.11
    • Component/s: None
    • Labels:

      Description

      The old jmx.remoteaccess file for manipulation management access rights is no longer used after addition of the ACL v2 format to the Java broker whicih is now used instead. The broker continues to display and allow manipulating the contents of the jmxremote.access file however, this behaviour should be removed and the console updated appropriately to convey this to users.

        Activity

        Hide
        Robbie Gemmell added a comment -

        Patch applied.

        Show
        Robbie Gemmell added a comment - Patch applied.
        Hide
        Keith Wall added a comment -

        Hi Robbie

        Would you mind reviewing this patch please?

        cheers Keith

        Show
        Keith Wall added a comment - Hi Robbie Would you mind reviewing this patch please? cheers Keith
        Hide
        Keith Wall added a comment -

        1) Removed remaining jmx access functionality.
        2) Removed references to security/jmx/access from all existing configuration files.
        3) Made ServerConfiguration#validateConfiguration reject config files that still contain the security/jmx/access element in order to promote good end-user understanding of configuration.

        For JMX:

        1) setRights now throws UnsupportedOperationException with message.
        2) createUser(string,string,bool,bool,bool) throws UnsupportedOperationException iff any of the bool args are true i.e. the user attempts to give a user access JMX rights
        3) Deprecated createUser(string,string,bool,bool,bool) in favour of new two arg form createUser(string,string)
        4) viewUsers changed to always return admin, read, and write items as false.

        Show
        Keith Wall added a comment - 1) Removed remaining jmx access functionality. 2) Removed references to security/jmx/access from all existing configuration files. 3) Made ServerConfiguration#validateConfiguration reject config files that still contain the security/jmx/access element in order to promote good end-user understanding of configuration. For JMX: 1) setRights now throws UnsupportedOperationException with message. 2) createUser(string,string,bool,bool,bool) throws UnsupportedOperationException iff any of the bool args are true i.e. the user attempts to give a user access JMX rights 3) Deprecated createUser(string,string,bool,bool,bool) in favour of new two arg form createUser(string,string) 4) viewUsers changed to always return admin, read, and write items as false.
        Hide
        Robbie Gemmell added a comment -

        Updating 'Fix For' to Unknown on issues not targeted for 0.8

        Show
        Robbie Gemmell added a comment - Updating 'Fix For' to Unknown on issues not targeted for 0.8

          People

          • Assignee:
            Robbie Gemmell
            Reporter:
            Robbie Gemmell
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development