You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@activemq.apache.org by "Willem Borgesius (Jira)" <ji...@apache.org> on 2020/03/06 07:47:00 UTC

[jira] [Created] (AMQ-7437) Active mq web console error in karaf with java.security.policy

Willem Borgesius created AMQ-7437:
-------------------------------------

             Summary: Active mq web console error in karaf with java.security.policy
                 Key: AMQ-7437
                 URL: https://issues.apache.org/jira/browse/AMQ-7437
             Project: ActiveMQ
          Issue Type: Bug
          Components: Web Console
    Affects Versions: 5.15.11
         Environment: (Docker) java: amazoncorretto:8u242

Activemq : 5.15.11

Karaf: 4.2.8

Pax-web-features: 7.3.6 (Overwritten repo)

Spring: 5.1.9.RELEASE_1 (using classpath xsd url in activemq.xml)

Camel :  2.22.1

 
            Reporter: Willem Borgesius
         Attachments: stacktrace.txt

Running karaf with java.security.policy=${karaf.etc}/all.policy (preset in system properties, just uncommented) i get a stacktrace when accessing activemq web console. 

 

Contents of all.policy(removed license for readability):

grant {
 permission java.security.AllPermission;
};

 

I need to have the java security manager active because our applicaties still relies on RMI and the RMIClassloader won't work without a securitymanager. Unfortunately for the web console i get this exception:

java.security.AccessControlException: access denied ("javax.security.auth.AuthPermission" "getSubject")

 

I added a text file with the full stack trace. I am unsure in which component the problem lies, but the rest of karaf seems to work.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)