Hi Karaf users, I would like to allow a user to login to Karaf’s console and be able to execute one command only: one that I supply.
So far, I have created my user in keys.properties and given it a new group, ‘newgroup’. In the same file I also “_g_\:pulsegroup = pulserole”. I can login with the user OK but I’m surprised to be able to access the existing commands. The documentation at https://karaf.apache.org/manual/latest/users-guide/security.html#Console suggests that the existing commands are mostly restricted to existing roles/groups via org.apache.karaf.command.acl.* files, but these do not exist? What am I missing? How can I restrict the commands the user can run to mine only? Thanks, Dan.
