1012584 – RBAC: Authorization error on access to Transaction logs

Bug 1012584 - RBAC: Authorization error on access to Transaction logs

Summary: RBAC: Authorization error on access to Transaction logs

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	JBoss Enterprise Application Platform 6
Classification:	JBoss
Component:	Web Console
Sub Component:
Version:	6.2.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	urgent
Target Milestone:	ER4
Target Release:	EAP 6.2.0
Assignee:	Heiko Braun
QA Contact:	Jakub Cechacek
Docs Contact:	Russell Dickenson
URL:
Whiteboard:
Depends On:
Blocks:	1014047
TreeView+	depends on / blocked

Reported:	2013-09-26 16:45 UTC by Jakub Cechacek
Modified:	2013-12-15 16:23 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2013-12-15 16:23:24 UTC
Type:	Bug
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	HAL-220	0	Major	Resolved	Authorization error on access to Transaction logs	2016-11-15 11:17:13 UTC

Description Jakub Cechacek 2013-09-26 16:45:50 UTC

Accessing Runtime - Subsystems - Transaction logs will raise an Auth error - as it seems that probe operation is performed on access to this page. However only global scope administrators have permissions to do so. 


Cancel	
 
OK
 Thu Sep 26 18:40:09 GMT+200 2013
Unknown error

Unexpected HTTP response: 500

Request
{
    "address" => [
        ("host" => "master"),
        ("server" => "server-two"),
        ("subsystem" => "transactions"),
        ("log-store" => "log-store")
    ],
    "operation" => "probe"
}

Response

Internal Server Error
{
    "outcome" => "failed",
    "result" => undefined,
    "failure-description" => "JBAS014749: Operation handler failed: JBAS011360: Unauthorized access",
    "rolled-back" => true
}

Comment 1 JBoss JIRA Server 2013-09-30 12:44:36 UTC

Heiko Braun <ike.braun> updated the status of jira HAL-220 to Resolved

Comment 2 Vladimir Dosoudil 2013-10-01 12:06:18 UTC

Moving back to ASSIGNED (https://docspace.corp.redhat.com/docs/DOC-154626).
There's no PR to eap 6.x github repo https://github.com/jbossas/jboss-eap/

Comment 3 Vladimir Dosoudil 2013-10-01 12:48:55 UTC

The umbrella issue 1014047 is available now.

Comment 7 Jakub Cechacek 2013-10-08 16:15:50 UTC

Verified 6.2.0.ER5

Note You need to log in before you can comment on or make changes to this bug.