[jira] [Resolved] (GEODE-2247) GFSH connect over HTTP without credentials should fail earlier

[Kevin Duling (JIRA)]

     [ 
https://issues.apache.org/jira/browse/GEODE-2247?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Kevin Duling resolved GEODE-2247.
---------------------------------
       Resolution: Fixed
    Fix Version/s: 1.2.0

An issue was found in {{IntegratedSecurityService.login(String username, String 
password)}} where a null was returned if the username or password were blank.  
Made changes to check whether or not security was enabled and to throw an 
exception if it is and credentials are not supplied.  This enables the http 
conenction to behave like the jmx connection where the user is prompted for 
login credentials if they aren't supplied.

{code}
$ gfsh
    _________________________     __
   / _____/ ______/ ______/ /____/ /
  / /  __/ /___  /_____  / _____  / 
 / /__/ / ____/  _____/ / /    / /  
/______/_/      /______/_/    /_/    1.2.0-SNAPSHOT

Monitor and Manage Apache Geode
gfsh>connect --use-http
user: admin
password: ******
Successfully connected to: GemFire Manager HTTP service @ 
http://localhost:7070/gemfire/v1

gfsh>quit
Exiting... 

$ gfsh
    _________________________     __
   / _____/ ______/ ______/ /____/ /
  / /  __/ /___  /_____  / _____  / 
 / /__/ / ____/  _____/ / /    / /  
/______/_/      /______/_/    /_/    1.2.0-SNAPSHOT

Monitor and Manage Apache Geode
gfsh>connect --use-http --user=foo --password=bar
The HTTP request failed with: 401 - Not authenticated


{code}

> GFSH connect over HTTP without credentials should fail earlier
> --------------------------------------------------------------
>
>                 Key: GEODE-2247
>                 URL: https://issues.apache.org/jira/browse/GEODE-2247
>             Project: Geode
>          Issue Type: Bug
>          Components: gfsh, rest (admin), security
>    Affects Versions: 1.0.0-incubating
>            Reporter: Ben Moss
>            Assignee: Kevin Duling
>            Priority: Minor
>              Labels: HttpService, gfsh, security
>             Fix For: 1.2.0
>
>
> With a SecurityManager configured and using GFSH over http, issuing a 
> {{connect}} command without {{--user}} or {{--password}} will appear to 
> succeed, responding with {{Successfully connected to: GemFire Manager HTTP 
> service}}. However if you then try to do anything in this session you will 
> get an error {{Could not process command due to GemFire error. Error while 
> processing command <list members> Reason : Error: Anonymous User}}.
> It seems like it should fail on the {{connect}}.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)