[jira] [Created] (ARTEMIS-3191) Cannot use broker-connection mirror with credentials

Fri, 19 Mar 2021 11:40:06 -0700 

Stephen Baker created ARTEMIS-3191:
--------------------------------------

             Summary: Cannot use broker-connection mirror with credentials
                 Key: ARTEMIS-3191
                 URL: https://issues.apache.org/jira/browse/ARTEMIS-3191
             Project: ActiveMQ Artemis
          Issue Type: Bug
          Components: AMQP
    Affects Versions: 2.17.0
         Environment: Docker for MacOS

Using the artemis-adoptopenjdk-11 image for Artemis 2.17.0
            Reporter: Stephen Baker
         Attachments: broker.xml, broker_1_m.xml, docker-compose.yml

When using broker-connections with mirroring and username/password credentials 
(through PropertiesLoginModule required), messages do not make it to the fail 
over instance.

I see the connection being established, the mirror queue is created, but fills 
up with more and more messages. There is a session on the replica server, but 
no session on the live server and no consumers in the mirror queue.

On the live server I see the following in the log:

 

{{}}
{noformat}
2021-03-19 18:34:54,501 INFO [org.apache.activemq.artemis.protocol.amqp.logger] 
AMQ111003:*******************************************************************************************************************************Success
 on Server AMQP Connection DRMirror1M on artemis-1-m:5672 after 0 
retries*******************************************************************************************************************************2021-03-19
 18:34:54,820 WARN [org.apache.activemq.artemis.core.server] AMQ222216: 
Security problem while authenticating: AMQ229031: Unable to validate user from 
artemis-1-m/172.18.0.2:5672. Username: null; SSL certificate subject DN: 
unavailable2021-03-19 18:34:54,823 WARN 
[org.apache.activemq.artemis.protocol.amqp.proton.handler.ProtonHandler] 
AMQ229031: Unable to validate user from artemis-1-m/172.18.0.2:5672. Username: 
null; SSL certificate subject DN: unavailable: 
ActiveMQSecurityException[errorType=SECURITY_EXCEPTION message=AMQ229031: 
Unable to validate user from artemis-1-m/172.18.0.2:5672. Username: null; SSL 
certificate subject DN: unavailable]at 
org.apache.activemq.artemis.core.security.impl.SecurityStoreImpl.authenticate(SecurityStoreImpl.java:204)
 [artemis-server-2.17.0.jar:2.17.0]at 
org.apache.activemq.artemis.core.server.impl.ActiveMQServerImpl.createSession(ActiveMQServerImpl.java:1679)
 [artemis-server-2.17.0.jar:2.17.0]at 
org.apache.activemq.artemis.protocol.amqp.broker.AMQPSessionCallback.init(AMQPSessionCallback.java:210)
 [artemis-amqp-protocol-2.17.0.jar:2.17.0]at 
org.apache.activemq.artemis.protocol.amqp.proton.AMQPSessionContext.initialize(AMQPSessionContext.java:81)
 [artemis-amqp-protocol-2.17.0.jar:2.17.0]at 
org.apache.activemq.artemis.protocol.amqp.proton.AMQPConnectionContext.onLocalOpen(AMQPConnectionContext.java:567)
 [artemis-amqp-protocol-2.17.0.jar:2.17.0]at 
org.apache.activemq.artemis.protocol.amqp.proton.handler.Events.dispatch(Events.java:47)
 [artemis-amqp-protocol-2.17.0.jar:2.17.0]at 
org.apache.activemq.artemis.protocol.amqp.proton.handler.ProtonHandler.dispatch(ProtonHandler.java:564)
 [artemis-amqp-protocol-2.17.0.jar:2.17.0]at 
org.apache.activemq.artemis.protocol.amqp.proton.handler.ProtonHandler.flush(ProtonHandler.java:359)
 [artemis-amqp-protocol-2.17.0.jar:2.17.0]at 
org.apache.activemq.artemis.protocol.amqp.proton.AMQPConnectionContext.flush(AMQPConnectionContext.java:234)
 [artemis-amqp-protocol-2.17.0.jar:2.17.0]at 
org.apache.activemq.artemis.protocol.amqp.connect.AMQPBrokerConnection.lambda$doConnect$2(AMQPBrokerConnection.java:259)
 [artemis-amqp-protocol-2.17.0.jar:2.17.0]at 
io.netty.util.concurrent.AbstractEventExecutor.safeExecute(AbstractEventExecutor.java:164)
 [netty-all-4.1.51.Final.jar:4.1.51.Final]at 
io.netty.util.concurrent.SingleThreadEventExecutor.runAllTasks(SingleThreadEventExecutor.java:472)
 [netty-all-4.1.51.Final.jar:4.1.51.Final]at 
io.netty.channel.epoll.EpollEventLoop.run(EpollEventLoop.java:384) 
[netty-all-4.1.51.Final.jar:4.1.51.Final]at 
io.netty.util.concurrent.SingleThreadEventExecutor$4.run(SingleThreadEventExecutor.java:989)
 [netty-all-4.1.51.Final.jar:4.1.51.Final]at 
io.netty.util.internal.ThreadExecutorMap$2.run(ThreadExecutorMap.java:74) 
[netty-all-4.1.51.Final.jar:4.1.51.Final]at 
org.apache.activemq.artemis.utils.ActiveMQThreadFactory$1.run(ActiveMQThreadFactory.java:118)
 [artemis-commons-2.17.0.jar:2.17.0]{noformat}
If I add `<security-enabled>false</security-enabled>` then the mirror works as 
expected.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Reply via email to