[
https://issues.apache.org/jira/browse/ARTEMIS-5760?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Justin Bertram updated ARTEMIS-5760:
------------------------------------
Description:
Apache ActiveMQ Artemis Console 1.4.0 fails after logging in limited users and
the web browser displays a blank page. You can easily reproduce this issue by
using the following {{management.xml}} file and logging in as a user with the
{{connections}} role:
{code:xml}
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<management-context xmlns="http://activemq.apache.org/schema";>
<authorisation>
<allowlist>
<entry domain="hawtio"/>
</allowlist>
<default-access>
<access method="list*" roles="amq"/>
<access method="get*" roles="amq"/>
<access method="is*" roles="amq"/>
</default-access>
<role-access>
<match domain="org.apache.activemq.artemis">
<access method="listConnections" roles="connections,amq"/>
<access method="listSessions" roles="sessions,amq"/>
<access method="listConsumers" roles="consumers,amq"/>
<access method="listProducers" roles="producers,amq"/>
<access method="listQueues" roles="queues,amq"/>
<access method="listAddresses" roles="addresses,amq"/>
<access method="list*" roles="amq"/>
<access method="get*" roles="amq"/>
<access method="is*" roles="amq"/>
<access method="set*" roles="amq"/>
<access method="*" roles="amq"/>
</match>
</role-access>
</authorisation>
</management-context>{code}
{code}
other.856fe495.chunk.js:2 [hawtio-shared] Error during readAttributes:
{request: {…}, error_type: 'java.lang.Exception', error: 'java.lang.Exception :
User not authorized to access attribute: Uptime', status: 403}
react.52f8e43c.chunk.js:2 Uncaught TypeError: Cannot read properties of
undefined (reading 'indexOf')
{code}
was:
Apache ActiveMQ Artemis Console 1.4.0 fails after logging in limited users and
the web browser displays a blank page. You can easily reproduce this issue by
using the following management.xml file and logging in as a user with the role
connections:
{code:xml}
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<management-context xmlns="http://activemq.apache.org/schema";>
<authorisation>
<allowlist>
<entry domain="hawtio"/>
</allowlist>
<default-access>
<access method="list*" roles="amq"/>
<access method="get*" roles="amq"/>
<access method="is*" roles="amq"/>
</default-access>
<role-access>
<match domain="org.apache.activemq.artemis">
<access method="listConnections" roles="connections,amq"/>
<access method="listSessions" roles="sessions,amq"/>
<access method="listConsumers" roles="consumers,amq"/>
<access method="listProducers" roles="producers,amq"/>
<access method="listQueues" roles="queues,amq"/>
<access method="listAddresses" roles="addresses,amq"/>
<access method="list*" roles="amq"/>
<access method="get*" roles="amq"/>
<access method="is*" roles="amq"/>
<access method="set*" roles="amq"/>
<access method="*" roles="amq"/>
</match>
</role-access>
</authorisation>
</management-context>
{code}
{code}
other.856fe495.chunk.js:2 [hawtio-shared] Error during readAttributes:
{request: {…}, error_type: 'java.lang.Exception', error: 'java.lang.Exception :
User not authorized to access attribute: Uptime', status: 403}
react.52f8e43c.chunk.js:2 Uncaught TypeError: Cannot read properties of
undefined (reading 'indexOf')
{code}
> Web console fails with limited users
> ------------------------------------
>
> Key: ARTEMIS-5760
> URL: https://issues.apache.org/jira/browse/ARTEMIS-5760
> Project: ActiveMQ Artemis
> Issue Type: Bug
> Components: Web Console
> Affects Versions: console-1.4.0
> Reporter: Domenico Francesco Bruscino
> Priority: Major
>
> Apache ActiveMQ Artemis Console 1.4.0 fails after logging in limited users
> and the web browser displays a blank page. You can easily reproduce this
> issue by using the following {{management.xml}} file and logging in as a user
> with the {{connections}} role:
> {code:xml}
> <?xml version="1.0" encoding="UTF-8" standalone="yes"?>
> <management-context xmlns="http://activemq.apache.org/schema";>
> <authorisation>
> <allowlist>
> <entry domain="hawtio"/>
> </allowlist>
> <default-access>
> <access method="list*" roles="amq"/>
> <access method="get*" roles="amq"/>
> <access method="is*" roles="amq"/>
> </default-access>
> <role-access>
> <match domain="org.apache.activemq.artemis">
> <access method="listConnections" roles="connections,amq"/>
> <access method="listSessions" roles="sessions,amq"/>
> <access method="listConsumers" roles="consumers,amq"/>
> <access method="listProducers" roles="producers,amq"/>
> <access method="listQueues" roles="queues,amq"/>
> <access method="listAddresses" roles="addresses,amq"/>
> <access method="list*" roles="amq"/>
> <access method="get*" roles="amq"/>
> <access method="is*" roles="amq"/>
> <access method="set*" roles="amq"/>
> <access method="*" roles="amq"/>
> </match>
> </role-access>
> </authorisation>
> </management-context>{code}
> {code}
> other.856fe495.chunk.js:2 [hawtio-shared] Error during readAttributes:
> {request: {…}, error_type: 'java.lang.Exception', error: 'java.lang.Exception
> : User not authorized to access attribute: Uptime', status: 403}
> react.52f8e43c.chunk.js:2 Uncaught TypeError: Cannot read properties of
> undefined (reading 'indexOf')
> {code}
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
For further information, visit: https://activemq.apache.org/contact
