You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@activemq.apache.org by "Willem Borgesius (Jira)" <ji...@apache.org> on 2020/03/06 13:44:00 UTC
[jira] [Commented] (AMQ-7437) Active mq web console error in karaf
with java.security.policy
[ https://issues.apache.org/jira/browse/AMQ-7437?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17053425#comment-17053425 ]
Willem Borgesius commented on AMQ-7437:
---------------------------------------
Apparantly i could do without enabling the security manager as i have tge classes locally.
I still wonder why this combination fails though.
I undid my pax-web upgrade, moved back to 7.2.14 but that didn't change anything.
> Active mq web console error in karaf with java.security.policy
> --------------------------------------------------------------
>
> Key: AMQ-7437
> URL: https://issues.apache.org/jira/browse/AMQ-7437
> Project: ActiveMQ
> Issue Type: Bug
> Components: Web Console
> Affects Versions: 5.15.11
> Environment: (Docker) java: amazoncorretto:8u242
> Activemq : 5.15.11
> Karaf: 4.2.8
> Pax-web-features: 7.3.6 (Overwritten repo)
> Spring: 5.1.9.RELEASE_1 (using classpath xsd url in activemq.xml)
> Camel : 2.22.1
>
> Reporter: Willem Borgesius
> Priority: Major
> Attachments: stacktrace.txt
>
>
> Running karaf with java.security.policy=${karaf.etc}/all.policy (preset in system properties, just uncommented) i get a stacktrace when accessing activemq web console.
>
> Contents of all.policy(removed license for readability):
> grant {
> permission java.security.AllPermission;
> };
>
> I need to have the java security manager active because our applicaties still relies on RMI and the RMIClassloader won't work without a securitymanager. Unfortunately for the web console i get this exception:
> java.security.AccessControlException: access denied ("javax.security.auth.AuthPermission" "getSubject")
>
> I added a text file with the full stack trace. I am unsure in which component the problem lies, but the rest of karaf seems to work.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)