[
https://issues.apache.org/jira/browse/KARAF-1148?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13186842#comment-13186842
]
Łukasz Dywicki commented on KARAF-1148:
---------------------------------------
Actually I started implementing the security layer in the WebConsole. So far it
is not commited but I've introduced following roles:
osgi-bundle
osgi-service
osgi-config
etc. The access to whole osgi-* stuff might be granted by giving a osgi role.
What will allow user to access all osgi related stuff.
We can introduce roles and permissions. In code we can have a permissions
required to access given part of code and configurable roles to let user assign
permissions separately.
> Use group in shell/webconsole/MBeanServer
> -----------------------------------------
>
> Key: KARAF-1148
> URL: https://issues.apache.org/jira/browse/KARAF-1148
> Project: Karaf
> Issue Type: Improvement
> Components: karaf-shell, karaf-webconsole
> Reporter: Jean-Baptiste Onofré
> Assignee: Jean-Baptiste Onofré
> Fix For: 3.0.0
>
>
> Currently, Karaf shell, MBean server, and WebConsole don't use the JAAS group
> to define execution permission on actions.
> For instance, it could be helpful to define:
> - admin: * (allowing all actions for the users)
> - group A: features/install, features/uninstall
> - group B: features/list, config/list
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
