Details
-
Bug
-
Resolution: Done
-
Major
-
jboss-fuse-6.2
-
None
-
%
Description
It seems that insight/rh access plugin was introduced without required RBAC config file.
If I define user:
etc/users.properties
viewer=viewer,viewer,Monitor
In Hawtio i get:
{ "error_type": "java.lang.Exception", "error": "java.lang.Exception : Insufficient roles/credentials for operation", "status": 403, "request": { "operation": "jsonQueryLogResults", "mbean": "io.fabric8.insight:type=LogQuery", "arguments": [ "{\"afterTimestamp\":1421064692711,\"count\":20}" ], "type": "exec" }, "stacktrace": "java.lang.Exception: Insufficient roles/credentials for operation at org.jolokia.http.HttpRequestHandler.executeRequest(HttpRequestHandler.java:214) ...." }
It could be fixed by adding file:
etc/jmx.acl.io.fabric8.insight.LogQuery.cfg
jsonQueryLogResults=Monitor
I'm not sure, which operations and roles should be included.
Also, is there any karaf command related to this feature, which is missing ACL config?