[
https://issues.apache.org/jira/browse/CAMEL-13361?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16801383#comment-16801383
]
Claus Ibsen commented on CAMEL-13361:
-------------------------------------
This is not a bug. You need to implement your own security provider that hooks
into karaf via JaaS.
> netty-http4 role based authentication not working : path-resolving issue
> -------------------------------------------------------------------------
>
> Key: CAMEL-13361
> URL: https://issues.apache.org/jira/browse/CAMEL-13361
> Project: Camel
> Issue Type: New Feature
> Components: camel-netty4-http, karaf
> Affects Versions: 2.21.2
> Reporter: Abdulhamid
> Priority: Minor
> Attachments: blueprint.xml
>
>
> Developed 2 REST services with netty4-http component.
> Now I want to use HTTP Basic Authentication ( in KARAF runtime)
> Edited karaf's system.properties to add roles "role1" and "role2".
> karaf.local.roles = admin,manager,viewer,systembundles,role1,role2
> Edited users.properties to add a new user1 belonging to role role1 and
> another user2 to role2:
> user1=user1,role1
> user2=user2,role2
> attached is bluprint.xml
>
> Considering port is 8081
> Service 1-> http://localhost:8081/path1 -> should be accessible to user
> "user1" (users having role1 only)
> Service 2-> http://localhost:8081/path2 -> should be accessible to user
> "user2" (users having role2 only)
> But when I hit service http://localhost:8081/path1 with username=user2 and
> password=user2,
> The service is accessible, this path should be inaccessible (unauthorized
> access)
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
