[
https://issues.apache.org/jira/browse/KARAF-4889?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15735497#comment-15735497
]
Guillaume Nodet commented on KARAF-4889:
----------------------------------------
Can we use a servlet filter for that ?
> Support role based access to web console
> ----------------------------------------
>
> Key: KARAF-4889
> URL: https://issues.apache.org/jira/browse/KARAF-4889
> Project: Karaf
> Issue Type: Improvement
> Components: karaf-security, webconsole
> Reporter: Paul McCulloch
>
> Currently a user must be in the admin role to access the web console. Once
> connected they have total control over the karaf instance.
> See https://github.com/hawtio/hawtio/issues/465 for an equivalent kind of
> feature.
> It should be possible to grant limited permissions to a user so that they
> can, for example:
> * Read logs
> * View (some of?) the configuration
> * Edit (some of?) the configuration
> But not:
> * Stop a bundle
> * Modify all the configuration
> In the same way that the shell offers fine grained control.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
