Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-490 Domain Management Role Based Access Control
  3. WFLY-1843

Invoking :read-resource operation on Security subsystem as a role with restricted privileges causes NPE

    XMLWordPrintable

Details

    Description

      Invoking :read-resource operation on Security subsystem results in NPE

      :whoami(verbose=true)
{
    "outcome" => "success",
    "result" => {
        "identity" => {
            "username" => "monitor",
            "realm" => "ManagementRealm"
        },
        "roles" => ["Monitor"]
    }
}

      /subsystem=security:read-resource
{
    "outcome" => "failed",
    "failure-description" => "JBAS014749: Operation handler failed: null",
    "rolled-back" => true
}

      As a result NPE can be found in server log [1] http://pastebin.test.redhat.com/157254

      Although I'm not sure whether this is relevant but SecuritySubsystemRootResourceDefinition doesn't have any Access Constraints set

      Attachments

        Activity

          People

            bstansbe@redhat.com Brian Stansberry
            jcechace@redhat.com Jakub Čecháček
            Votes:
            0 Vote for this issue
            Watchers:
            6 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: