Bug 1015484 - RBAC: access permission changed for JMX and Security Subsystem
Summary: RBAC: access permission changed for JMX and Security Subsystem
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: JBoss Enterprise Application Platform 6
Classification: JBoss
Component: Web Console
Version: 6.2.0
Hardware: Unspecified
OS: Unspecified
unspecified
urgent
Target Milestone: ER5
: EAP 6.2.0
Assignee: Heiko Braun
QA Contact: Jakub Cechacek
Russell Dickenson
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2013-10-04 11:25 UTC by Jakub Cechacek
Modified: 2013-12-15 16:55 UTC (History)
6 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2013-12-15 16:55:14 UTC
Type: Bug
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker HAL-249 0 Major Resolved Access permission changed for JMX and Security Subsystem 2013-11-21 23:15:57 UTC

Description Jakub Cechacek 2013-10-04 11:25:04 UTC 
"Profile - Subsystems - Core -JMX" and "Profile - Subsystem -Security - Security  subystem" sections in console were inaccessible in ER3 build, however in ER4 these resources are accessible. 

Was this change intentional?
Comment 1 Jakub Cechacek 2013-10-04 11:30:36 UTC 
This affect roles with no access to sensitive resources (Maintainer, Monitor, Operator, Deployer)
Comment 2 Heiko Braun 2013-10-04 12:05:13 UTC 
i did review the permissions again. according to my knowledge, access to these two resources (as they are presented in the UI) is correct.
Comment 3 JBoss JIRA Server 2013-10-04 13:15:04 UTC 
Heiko Braun <ike.braun> updated the status of jira HAL-249 to Resolved
Comment 4 Jakub Cechacek 2013-10-07 07:42:31 UTC 
@Heiko  Well, in ER3 access to these subsystems was restricted.
Comment 5 Jakub Cechacek 2013-10-08 08:53:08 UTC 
Verified for EAP 6.2.0.ER5 - as Heiko commented that this behavior is intended
Note You need to log in before you can comment on or make changes to this bug.