Uploaded image for project: 'Red Hat Fuse'
  1. Red Hat Fuse
  2. ENTESB-5107

Cannot create fabric with user as member as Administrator group via bin/client script

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Major
    • None
    • jboss-fuse-6.3
    • Fabric8 v1, Security
    • None
    • % %
      1. unzip Fuse 6.3.0-026
      2. create user test=test,Administrator
      3. start Fuse with bin/start
      4. connect to fuse via bin/client
      5. fabric:create

    Description

      User that is member of Administrator group cannot create fabric when you start Fuse with bin/start script and then connect to it with bin/client

      14:32:41 ➜  bin  ./start 
⌚ 14:32:57 ➜  bin  ./client
Logging in as fafram
8829 [sshd-SshClient[d71adc2]-nio2-thread-4] WARN org.apache.sshd.client.keyverifier.AcceptAllServerKeyVerifier - Server at [/0.0.0.0:8101, DSA, 67:cb:94:f6:6a:8c:18:b3:e0:01:df:a8:c5:36:e8:82] presented unverified {} key: {}
      _ ____                  ______
     | |  _ \                |  ____|             
     | | |_) | ___  ___ ___  | |__ _   _ ___  ___
 _   | |  _ < / _ \/ __/ __| |  __| | | / __|/ _ \
| |__| | |_) | (_) \__ \__ \ | |  | |_| \__ \  __/
 \____/|____/ \___/|___/___/ |_|   \__,_|___/\___|

  JBoss Fuse (6.3.0.redhat-026)
  http://www.redhat.com/products/jbossenterprisemiddleware/fuse/

Hit '<tab>' for a list of available commands
and '[cmd] --help' for help on a specific command.

Open a browser to http://localhost:8181 to access the management console

Create a new Fabric via 'fabric:create'
or join an existing Fabric via 'fabric:join [someUrls]'

Hit '<ctrl-d>' or 'osgi:shutdown' to shutdown JBoss Fuse.

JBossFuse:fafram@root> 
JBossFuse:fafram@root> 
JBossFuse:fafram@root> 
JBossFuse:fafram@root> fabric:create
The fabric:create command can be executed only by admin user

      users.properties looks like this:

      #
#  Copyright 2005-2015 Red Hat, Inc.
#
#  Red Hat licenses this file to you under the Apache License, version
#  2.0 (the "License"); you may not use this file except in compliance
#  with the License.  You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
#  Unless required by applicable law or agreed to in writing, software
#  distributed under the License is distributed on an "AS IS" BASIS,
#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
#  implied.  See the License for the specific language governing
#  permissions and limitations under the License.
#

#
# This file contains the valid users who can log into Fabric. Each line have to be of
# the format:
#
# USER=PASSWORD,ROLE1,ROLE2,...
#
# All users and roles entered in this file are available after Fabric startup
# and modifiable via the JAAS command group. These users reside in a JAAS domain
# with the name "karaf"..
#

#All users specified in this file, will be uploaded to the fabric registry and will
#be available to all containers that join the fabric.
#The password of the first user in the file will also be used as a registry (zookeeper) password
#unless a password is explicitly specified.
#admin=admin,admin,manager,viewer,Monitor, Operator, Maintainer, Deployer, Auditor, Administrator, SuperUser
fafram=fafram,Administrator

      Starting Fuse with the same user with bin/fuse and then calling fabric:create works without problem. This bug was introduced in Fuse 6.3.0-026 build.

      Attachments

        Activity

          People

            acosenti Andrea Cosentino
            rjakubco Roman Jakubco (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: