1019026 – RBAC: Incorrect permission metadata for server group scoped roles on server-config=* resource

Bug 1019026 - RBAC: Incorrect permission metadata for server group scoped roles on server-config=* resource

Summary: RBAC: Incorrect permission metadata for server group scoped roles on server-c...

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	JBoss Enterprise Application Platform 6
Classification:	JBoss
Component:	Domain Management
Sub Component:
Version:	6.2.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	ER7
Target Release:	EAP 6.2.0
Assignee:	Brian Stansberry
QA Contact:	Ladislav Thon
Docs Contact:	Russell Dickenson
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2013-10-15 02:38 UTC by Brian Stansberry
Modified:	2013-12-15 16:13 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	Known Issue
Doc Text:	Causes: Consequence: Workaround (if any): Result:
Clone Of:
Environment:
Last Closed:	2013-12-15 16:13:48 UTC
Type:	Bug

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Brian Stansberry 2013-10-15 02:38:07 UTC

The permissons are wrong for server group scoped roles:

/host=master/server-config=*
    read-config:true
    write-config:false

With these settings a SGSR cannot add new server configurations, even for the group it's assigned to.


This is because the HostServerGroupTracker interprets the '*' as a normal server group name.

Comment 2 Ladislav Thon 2013-11-06 11:38:40 UTC

Verified with EAP 6.2.0.ER7.

Note You need to log in before you can comment on or make changes to this bug.