shell commands user roles

2011-11-02 Thread rrsavage
I'm new to Karaf and have a question about user access control within the (SSH) shell. Is there a way to define more granular level of user access to see (list/autocomplete) and execute commands via the (SSH) shell? For example, can certain commands be restricted to a configured set of user

Re: shell commands user roles

2011-11-02 Thread Guillaume Nodet
Not really, while that could be implemented for commands, the problem is that the command line also allows introspection and scripting and authorization can't easily be done at that level so the console would not be totally secured anyway. On Wed, Nov 2, 2011 at 16:25, rrsavage

Re: shell commands user roles

2011-11-02 Thread Jean-Baptiste Onofré
Hi Robert, it's not possible for now but it's a good idea. We have something similar in Apache Kalumet (called AccessList). It's a good new feature for Karaf 3.0. Regards JB On 11/02/2011 04:58 PM, rrsavage wrote: Really what I'm after is a two level access system. An admin level that has

Re: shell commands user roles

2011-11-02 Thread Achim Nierbeck
Hi JB, Robert sounds like a reasonable User/Role feature for Karaf, would be interesting to see what roles we have here, a full accessible admin, a user level, do we need more distinct levels, like for example features, web, that correspond to the std. feature sets we have? @Robert could you

Re: shell commands user roles

2011-11-02 Thread Guillaume Nodet
We'd have to keep anything we do on role based access consistent with the web console / jmx management layers. On Wed, Nov 2, 2011 at 17:16, Achim Nierbeck bcanh...@googlemail.comwrote: Hi JB, Robert sounds like a reasonable User/Role feature for Karaf, would be interesting to see what roles

Re: shell commands user roles

2011-11-02 Thread rrsavage
Will do Thanks! -- View this message in context: http://karaf.922171.n3.nabble.com/shell-commands-user-roles-tp3474148p3474512.html Sent from the Karaf - User mailing list archive at Nabble.com.

Re: shell commands user roles

2011-11-02 Thread rrsavage
Feature Request created: https://issues.apache.org/jira/browse/KARAF-979 https://issues.apache.org/jira/browse/KARAF-979 -- View this message in context: http://karaf.922171.n3.nabble.com/shell-commands-user-roles-tp3474148p3474561.html Sent from the Karaf - User mailing list archive at

Re: shell commands user roles

2011-11-02 Thread Jean-Baptiste Onofré
Thanks ;) Regards JB On 11/02/2011 06:41 PM, rrsavage wrote: Feature Request created: https://issues.apache.org/jira/browse/KARAF-979 https://issues.apache.org/jira/browse/KARAF-979 -- View this message in context:

Re: shell commands user roles

2011-11-02 Thread Achim Nierbeck
Guillaume, regarding JMX there have already been requests to secure JMX so I think this should be a reasonable add-on :) @Robert thanx :) regards, Achim 2011/11/2 Jean-Baptiste Onofré j...@nanthrax.net Thanks ;) Regards JB On 11/02/2011 06:41 PM, rrsavage wrote: Feature Request