Uploaded image for project: 'Red Hat Fuse'
  1. Red Hat Fuse
  2. ENTESB-2471

missing RBAC config for RH Access Log viewing

XMLWordPrintable

      It seems that insight/rh access plugin was introduced without required RBAC config file.

      If I define user:

      etc/users.properties
      viewer=viewer,viewer,Monitor

      In Hawtio i get:

       {
    "error_type": "java.lang.Exception",
    "error": "java.lang.Exception : Insufficient roles/credentials for operation",
    "status": 403,
    "request": {
      "operation": "jsonQueryLogResults",
      "mbean": "io.fabric8.insight:type=LogQuery",
      "arguments": [
        "{\"afterTimestamp\":1421064692711,\"count\":20}"
      ],
      "type": "exec"
    },
    "stacktrace": "java.lang.Exception: Insufficient roles/credentials for operation at org.jolokia.http.HttpRequestHandler.executeRequest(HttpRequestHandler.java:214) ...."
  }

      It could be fixed by adding file:

      etc/jmx.acl.io.fabric8.insight.LogQuery.cfg
      jsonQueryLogResults=Monitor

      I'm not sure, which operations and roles should be included.
      Also, is there any karaf command related to this feature, which is missing ACL config?

        1. log-error.png
          log-error.png
          388 kB

              pantinor@redhat.com Paolo Antinori
              jludvice Josef Ludvicek (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: