Uploaded image for project: 'JBoss A-MQ'
  1. JBoss A-MQ
  2. ENTMQ-1005

After creating a Fabric in JBoss A-MQ, RBAC is not enabled

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Major
    • JBoss A-MQ 6.2
    • JBoss A-MQ 6.2
    • fabric8
    • None
    • Hide

      Create a Fabric as follows in JBoss A-MQ:

      fabric:create --new-user admin --new-user-password admin --new-user-role
Administrator --resolver manualip --manual-ip 127.0.0.1
--wait-for-provisioning

      Then I cannot login to Hawtio using admin user. But if I add either of
      the roles, admin or viewer, I can login.

      Also, if I create the following additional users:

      janedoe=secret,Deployer
crider=secret,Monitor

      And do SSH login using bin/client, I see that janedoe and crider
      appear to have full admin access to the console commands, although they
      were not given the Administrator role.

      All of this behaviour is consistent with the old non-RBAC security. So,
      it looks like RBAC is not enabled in a fabric created in JBoss A-MQ 6.2
      build 114.

      Show
      Create a Fabric as follows in JBoss A-MQ: fabric:create -- new -user admin -- new -user-password admin -- new -user-role Administrator --resolver manualip --manual-ip 127.0.0.1 --wait- for -provisioning Then I cannot login to Hawtio using admin user. But if I add either of the roles, admin or viewer , I can login. Also, if I create the following additional users: janedoe=secret,Deployer crider=secret,Monitor And do SSH login using bin/client , I see that janedoe and crider appear to have full admin access to the console commands, although they were not given the Administrator role. All of this behaviour is consistent with the old non-RBAC security. So, it looks like RBAC is not enabled in a fabric created in JBoss A-MQ 6.2 build 114.

    Description

      It appears that the new role-based access control (RBAC) is not enabled in a Fabric created in JBoss A-MQ 6.2 (using build 114).

      Attachments

        Activity

          People

            yfang@redhat.com Freeman(Yue) Fang
            fbolton@redhat.com Fintan Bolton (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: