You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@activemq.apache.org by "John D. Ament" <jo...@gmail.com> on 2014/02/02 17:24:02 UTC
Accessing the hawtio console
Hi all,
If I'm using the standalone broker of activemq, I'm not able to log
in. From what I saw, admin/admin should be the right credentials, but
no matter what I use to login I'm getting back a 403 forbidden.
I have no made any configuration changes to the default app.
John
Re: Accessing the hawtio console
Posted by artnaseef <ar...@artnaseef.com>.
Check the file, conf/jetty-realm.properties - it contains the username and
password for the web console (unless jetty.xml has been modified).
Is the 403 error on url http://${broker}:8161/ ?
>
>
> Hi all,
>
> If I'm using the standalone broker of activemq, I'm not able to log
> in. From what I saw, admin/admin should be the right credentials, but
> no matter what I use to login I'm getting back a 403 forbidden.
>
> I have no made any configuration changes to the default app.
>
> John
>
>
>
>
> _______________________________________________
> If you reply to this email, your message will be added to the discussion
> below:
> http://activemq.2283324.n4.nabble.com/Accessing-the-hawtio-console-tp4677279.html
> To start a new topic under ActiveMQ - User, email
> ml-node+s2283324n2341805h3@n4.nabble.com
> To unsubscribe from ActiveMQ - User, visit
> http://activemq.2283324.n4.nabble.com/template/NamlServlet.jtp?macro=unsubscribe_by_code&node=2341805&code=YXJ0QGFydG5hc2VlZi5jb218MjM0MTgwNXwtMjA1NDcyNjY5MQ==
--
View this message in context: http://activemq.2283324.n4.nabble.com/Accessing-the-hawtio-console-tp4677279p4677286.html
Sent from the ActiveMQ - User mailing list archive at Nabble.com.
Re: Accessing the hawtio console
Posted by "John D. Ament" <jo...@gmail.com>.
I'm not sure what happened. I deleted my activemq install, unzipped
again and was able to login that time. I'm willing to chalk it up to
the goblins in the machine...
Thanks guys.
John
On Mon, Feb 3, 2014 at 12:20 PM, Dejan Bosanac <de...@nighttale.net> wrote:
> Hi John,
>
> you can remove hawtio security by using
>
> -Dhawtio.authenticationEnabled=false
>
> system property in
>
> bin/activemq
>
> (instead of currently used options). If you keep the default config, it
> will use config from users.properties
>
>
> Regards
> --
> Dejan Bosanac
> ----------------------
> Red Hat, Inc.
> FuseSource is now part of Red Hat
> dbosanac@redhat.com
> Twitter: @dejanb
> Blog: http://sensatic.net
> ActiveMQ in Action: http://www.manning.com/snyder/
>
>
> On Mon, Feb 3, 2014 at 5:59 PM, John D. Ament <jo...@gmail.com>wrote:
>
>> Hi,
>>
>> I'm using ActiveMQ 5.9, which seems to come bundled with hawtio.
>>
>> I'm able to disable the security constraint and access the old broker,
>> but not the hawtio console.
>>
>> I do see this in the logs, which seems about right:
>>
>> 2014-02-03 11:58:06,273 | INFO | Starting hawtio authentication
>> filter, JAAS realm: "activemq" authorized role: "admins" role
>> principal classes: "org.apache.activemq.jaas.GroupPrincipal" |
>> io.hawt.web.AuthenticationFilter | main
>>
>> I'm assuming that the correct credentials are admin/admin right?
>>
>> On Mon, Feb 3, 2014 at 4:55 AM, Dejan Bosanac <de...@nighttale.net> wrote:
>> > Hi John,
>> >
>> > how are you starting your broker and what version are you using? Try
>> > setting some hawtio system properties like
>> >
>> > -Dhawtio.realm=activemq -Dhawtio.role=admins
>> > -Dhawtio.rolePrincipalClasses=org.apache.activemq.jaas.GroupPrincipal
>> > -Djava.security.auth.login.config=$ACTIVEMQ_CONF/login.config
>> >
>> > and see if that helps.
>> >
>> > Regards
>> > --
>> > Dejan Bosanac
>> > ----------------------
>> > Red Hat, Inc.
>> > FuseSource is now part of Red Hat
>> > dbosanac@redhat.com
>> > Twitter: @dejanb
>> > Blog: http://sensatic.net
>> > ActiveMQ in Action: http://www.manning.com/snyder/
>> >
>> >
>> > On Mon, Feb 3, 2014 at 8:48 AM, Claus Ibsen <cl...@gmail.com>
>> wrote:
>> >
>> >> Hi
>> >>
>> >> Under the docs directory there is a web console readme file. It has
>> >> some pointers about setting up security.
>> >> If still a problem then try enabling DEBUG or TRACE logging at io.hawt
>> >> and see if you can see more details.
>> >>
>> >> On Sun, Feb 2, 2014 at 5:24 PM, John D. Ament <jo...@gmail.com>
>> >> wrote:
>> >> > Hi all,
>> >> >
>> >> > If I'm using the standalone broker of activemq, I'm not able to log
>> >> > in. From what I saw, admin/admin should be the right credentials, but
>> >> > no matter what I use to login I'm getting back a 403 forbidden.
>> >> >
>> >> > I have no made any configuration changes to the default app.
>> >> >
>> >> > John
>> >>
>> >>
>> >>
>> >> --
>> >> Claus Ibsen
>> >> -----------------
>> >> Red Hat, Inc.
>> >> Email: cibsen@redhat.com
>> >> Twitter: davsclaus
>> >> Blog: http://davsclaus.com
>> >> Author of Camel in Action: http://www.manning.com/ibsen
>> >> Make your Camel applications look hawt, try: http://hawt.io
>> >>
>>
Re: Accessing the hawtio console
Posted by Dejan Bosanac <de...@nighttale.net>.
Hi John,
you can remove hawtio security by using
-Dhawtio.authenticationEnabled=false
system property in
bin/activemq
(instead of currently used options). If you keep the default config, it
will use config from users.properties
Regards
--
Dejan Bosanac
----------------------
Red Hat, Inc.
FuseSource is now part of Red Hat
dbosanac@redhat.com
Twitter: @dejanb
Blog: http://sensatic.net
ActiveMQ in Action: http://www.manning.com/snyder/
On Mon, Feb 3, 2014 at 5:59 PM, John D. Ament <jo...@gmail.com>wrote:
> Hi,
>
> I'm using ActiveMQ 5.9, which seems to come bundled with hawtio.
>
> I'm able to disable the security constraint and access the old broker,
> but not the hawtio console.
>
> I do see this in the logs, which seems about right:
>
> 2014-02-03 11:58:06,273 | INFO | Starting hawtio authentication
> filter, JAAS realm: "activemq" authorized role: "admins" role
> principal classes: "org.apache.activemq.jaas.GroupPrincipal" |
> io.hawt.web.AuthenticationFilter | main
>
> I'm assuming that the correct credentials are admin/admin right?
>
> On Mon, Feb 3, 2014 at 4:55 AM, Dejan Bosanac <de...@nighttale.net> wrote:
> > Hi John,
> >
> > how are you starting your broker and what version are you using? Try
> > setting some hawtio system properties like
> >
> > -Dhawtio.realm=activemq -Dhawtio.role=admins
> > -Dhawtio.rolePrincipalClasses=org.apache.activemq.jaas.GroupPrincipal
> > -Djava.security.auth.login.config=$ACTIVEMQ_CONF/login.config
> >
> > and see if that helps.
> >
> > Regards
> > --
> > Dejan Bosanac
> > ----------------------
> > Red Hat, Inc.
> > FuseSource is now part of Red Hat
> > dbosanac@redhat.com
> > Twitter: @dejanb
> > Blog: http://sensatic.net
> > ActiveMQ in Action: http://www.manning.com/snyder/
> >
> >
> > On Mon, Feb 3, 2014 at 8:48 AM, Claus Ibsen <cl...@gmail.com>
> wrote:
> >
> >> Hi
> >>
> >> Under the docs directory there is a web console readme file. It has
> >> some pointers about setting up security.
> >> If still a problem then try enabling DEBUG or TRACE logging at io.hawt
> >> and see if you can see more details.
> >>
> >> On Sun, Feb 2, 2014 at 5:24 PM, John D. Ament <jo...@gmail.com>
> >> wrote:
> >> > Hi all,
> >> >
> >> > If I'm using the standalone broker of activemq, I'm not able to log
> >> > in. From what I saw, admin/admin should be the right credentials, but
> >> > no matter what I use to login I'm getting back a 403 forbidden.
> >> >
> >> > I have no made any configuration changes to the default app.
> >> >
> >> > John
> >>
> >>
> >>
> >> --
> >> Claus Ibsen
> >> -----------------
> >> Red Hat, Inc.
> >> Email: cibsen@redhat.com
> >> Twitter: davsclaus
> >> Blog: http://davsclaus.com
> >> Author of Camel in Action: http://www.manning.com/ibsen
> >> Make your Camel applications look hawt, try: http://hawt.io
> >>
>
Re: Accessing the hawtio console
Posted by "John D. Ament" <jo...@gmail.com>.
Hi,
I'm using ActiveMQ 5.9, which seems to come bundled with hawtio.
I'm able to disable the security constraint and access the old broker,
but not the hawtio console.
I do see this in the logs, which seems about right:
2014-02-03 11:58:06,273 | INFO | Starting hawtio authentication
filter, JAAS realm: "activemq" authorized role: "admins" role
principal classes: "org.apache.activemq.jaas.GroupPrincipal" |
io.hawt.web.AuthenticationFilter | main
I'm assuming that the correct credentials are admin/admin right?
On Mon, Feb 3, 2014 at 4:55 AM, Dejan Bosanac <de...@nighttale.net> wrote:
> Hi John,
>
> how are you starting your broker and what version are you using? Try
> setting some hawtio system properties like
>
> -Dhawtio.realm=activemq -Dhawtio.role=admins
> -Dhawtio.rolePrincipalClasses=org.apache.activemq.jaas.GroupPrincipal
> -Djava.security.auth.login.config=$ACTIVEMQ_CONF/login.config
>
> and see if that helps.
>
> Regards
> --
> Dejan Bosanac
> ----------------------
> Red Hat, Inc.
> FuseSource is now part of Red Hat
> dbosanac@redhat.com
> Twitter: @dejanb
> Blog: http://sensatic.net
> ActiveMQ in Action: http://www.manning.com/snyder/
>
>
> On Mon, Feb 3, 2014 at 8:48 AM, Claus Ibsen <cl...@gmail.com> wrote:
>
>> Hi
>>
>> Under the docs directory there is a web console readme file. It has
>> some pointers about setting up security.
>> If still a problem then try enabling DEBUG or TRACE logging at io.hawt
>> and see if you can see more details.
>>
>> On Sun, Feb 2, 2014 at 5:24 PM, John D. Ament <jo...@gmail.com>
>> wrote:
>> > Hi all,
>> >
>> > If I'm using the standalone broker of activemq, I'm not able to log
>> > in. From what I saw, admin/admin should be the right credentials, but
>> > no matter what I use to login I'm getting back a 403 forbidden.
>> >
>> > I have no made any configuration changes to the default app.
>> >
>> > John
>>
>>
>>
>> --
>> Claus Ibsen
>> -----------------
>> Red Hat, Inc.
>> Email: cibsen@redhat.com
>> Twitter: davsclaus
>> Blog: http://davsclaus.com
>> Author of Camel in Action: http://www.manning.com/ibsen
>> Make your Camel applications look hawt, try: http://hawt.io
>>
Re: Accessing the hawtio console
Posted by Dejan Bosanac <de...@nighttale.net>.
Hi John,
how are you starting your broker and what version are you using? Try
setting some hawtio system properties like
-Dhawtio.realm=activemq -Dhawtio.role=admins
-Dhawtio.rolePrincipalClasses=org.apache.activemq.jaas.GroupPrincipal
-Djava.security.auth.login.config=$ACTIVEMQ_CONF/login.config
and see if that helps.
Regards
--
Dejan Bosanac
----------------------
Red Hat, Inc.
FuseSource is now part of Red Hat
dbosanac@redhat.com
Twitter: @dejanb
Blog: http://sensatic.net
ActiveMQ in Action: http://www.manning.com/snyder/
On Mon, Feb 3, 2014 at 8:48 AM, Claus Ibsen <cl...@gmail.com> wrote:
> Hi
>
> Under the docs directory there is a web console readme file. It has
> some pointers about setting up security.
> If still a problem then try enabling DEBUG or TRACE logging at io.hawt
> and see if you can see more details.
>
> On Sun, Feb 2, 2014 at 5:24 PM, John D. Ament <jo...@gmail.com>
> wrote:
> > Hi all,
> >
> > If I'm using the standalone broker of activemq, I'm not able to log
> > in. From what I saw, admin/admin should be the right credentials, but
> > no matter what I use to login I'm getting back a 403 forbidden.
> >
> > I have no made any configuration changes to the default app.
> >
> > John
>
>
>
> --
> Claus Ibsen
> -----------------
> Red Hat, Inc.
> Email: cibsen@redhat.com
> Twitter: davsclaus
> Blog: http://davsclaus.com
> Author of Camel in Action: http://www.manning.com/ibsen
> Make your Camel applications look hawt, try: http://hawt.io
>
Re: Accessing the hawtio console
Posted by Claus Ibsen <cl...@gmail.com>.
Hi
Under the docs directory there is a web console readme file. It has
some pointers about setting up security.
If still a problem then try enabling DEBUG or TRACE logging at io.hawt
and see if you can see more details.
On Sun, Feb 2, 2014 at 5:24 PM, John D. Ament <jo...@gmail.com> wrote:
> Hi all,
>
> If I'm using the standalone broker of activemq, I'm not able to log
> in. From what I saw, admin/admin should be the right credentials, but
> no matter what I use to login I'm getting back a 403 forbidden.
>
> I have no made any configuration changes to the default app.
>
> John
--
Claus Ibsen
-----------------
Red Hat, Inc.
Email: cibsen@redhat.com
Twitter: davsclaus
Blog: http://davsclaus.com
Author of Camel in Action: http://www.manning.com/ibsen
Make your Camel applications look hawt, try: http://hawt.io