Uploaded image for project: 'JBoss A-MQ'
  1. JBoss A-MQ
  2. ENTMQ-1851

apache-activemq-5.11.0.redhat-621107 is not able to decrypt password when login to Hawtio console

    XMLWordPrintable

Details

    • Hide

      1. extract "apache-activemq-5.11.0.redhat-621107-bin.zip" to folder.
      2. generate encrypt password and verify it:

      [zx bin]$ ./activemq encrypt --password activemq --input redhat
      ...
      Encrypted text: ieOtJRlnuQhxQdg+o5eyiA==
      [zx bin]$ ./activemq decrypt --password activemq --input ieOtJRlnuQhxQdg+o5eyiA==
      ...
      Decrypted text: redhat

      3. configure "users.properties":

      #admin=admin
      zx=ENC(ieOtJRlnuQhxQdg+o5eyiA==)

      4. configure "group.properties":

      admin=admin
      developers=zx,admin

      5. configure "credentials-enc.properties":

      activemq.username=system
      activemq.password=ENC(mYRkg+4Q4hua1kvpCCI2hg==)
      guest.password=ENC(Cf3Jf3tM+UrSOoaKU50od5CuBa8rxjoL)
      zx=ENC(ieOtJRlnuQhxQdg+o5eyiA==)

      6. copy A-MQ_Home/examples/conf/activemq-security.xml to A-MQ_Home/conf and replace "jetty-demo.xml" with "jetty.xml" in activemq-security.xml.
      7. edit A-MQ_Home/bin/env, replace "-Dhawtio.role=admins" with "-Dhawtio.role=developers".
      8. start A-MQ:

      [zx bin]$ export ACTIVEMQ_ENCRYPTION_PASSWORD=activemq
      [zx bin]$ ./activemq console xbean:file:/xxx/conf/activemq-security.xml

      9. visit "http://localhost:8161/hawtio/login" then input:

      username/password:zx/redhat

      log shows: WARN | Login failed due Password does not match|

      Next, replace the password with encrypted one:

      username/password:zx/ENC(ieOtJRlnuQhxQdg+o5eyiA==)

      Now hawtio console can be logged in.
      log shows: INFO | hawtio login is using 1800 sec. HttpSession timeout

      Show
      1. extract "apache-activemq-5.11.0.redhat-621107-bin.zip" to folder. 2. generate encrypt password and verify it: [zx bin] $ ./activemq encrypt --password activemq --input redhat ... Encrypted text: ieOtJRlnuQhxQdg+o5eyiA== [zx bin] $ ./activemq decrypt --password activemq --input ieOtJRlnuQhxQdg+o5eyiA== ... Decrypted text: redhat 3. configure "users.properties": #admin=admin zx=ENC(ieOtJRlnuQhxQdg+o5eyiA==) 4. configure "group.properties": admin=admin developers=zx,admin 5. configure "credentials-enc.properties": activemq.username=system activemq.password=ENC(mYRkg+4Q4hua1kvpCCI2hg==) guest.password=ENC(Cf3Jf3tM+UrSOoaKU50od5CuBa8rxjoL) zx=ENC(ieOtJRlnuQhxQdg+o5eyiA==) 6. copy A-MQ_Home/examples/conf/activemq-security.xml to A-MQ_Home/conf and replace " jetty-demo.xml " with " jetty.xml " in activemq-security.xml . 7. edit A-MQ_Home/bin/env , replace " -Dhawtio.role=admins " with " -Dhawtio.role=developers ". 8. start A-MQ: [zx bin] $ export ACTIVEMQ_ENCRYPTION_PASSWORD=activemq [zx bin] $ ./activemq console xbean: file:/xxx/conf/activemq-security.xml 9. visit "http://localhost:8161/hawtio/login" then input: username/password:zx/redhat log shows: WARN | Login failed due Password does not match| Next, replace the password with encrypted one: username/password:zx/ENC(ieOtJRlnuQhxQdg+o5eyiA==) Now hawtio console can be logged in. log shows: INFO | hawtio login is using 1800 sec. HttpSession timeout

    Description

      Store user's encrypted password in configure files(A-MQ_Home/conf).
      But when login to Hawtio console, input plain text password didn't work.
      Only input ENC(xxxx) form string is able to login to Hawtio console.

      But "apache-activemq-5.11.0.redhat-620133" works as expected.

      Attachments

        Activity

          People

            gtully@redhat.com Gary Tully
            zhangxu1324_jira xu zhang (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: