Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-490 Domain Management Role Based Access Control
  3. WFLY-1843

Invoking :read-resource operation on Security subsystem as a role with restricted privileges causes NPE

    Details

      Description

      Invoking :read-resource operation on Security subsystem results in NPE

      :whoami(verbose=true)
      {
          "outcome" => "success",
          "result" => {
              "identity" => {
                  "username" => "monitor",
                  "realm" => "ManagementRealm"
              },
              "roles" => ["Monitor"]
          }
      }
      
      /subsystem=security:read-resource
      {
          "outcome" => "failed",
          "failure-description" => "JBAS014749: Operation handler failed: null",
          "rolled-back" => true
      }
      

      As a result NPE can be found in server log [1] http://pastebin.test.redhat.com/157254

      Although I'm not sure whether this is relevant but SecuritySubsystemRootResourceDefinition doesn't have any Access Constraints set

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                brian.stansberry Brian Stansberry
                Reporter:
                jcechace Jakub Cechacek
              • Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: