[ https://issues.apache.org/jira/browse/AMQ-3883?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14027196#comment-14027196 ]
Chris Schultz commented on AMQ-3883: ------------------------------------ I have review the code for LDAP Authorisation (within Karaf/Fuse 6.1) and this also doesn't work due to using the {{map.getGroupClass()}} method.: {code:title=SimpleCachedLDAPAuthorizationMap.java} DefaultAuthorizationMap map = this.map.get(); if (group && !user) { try { members.add(DefaultAuthorizationMap.createGroupPrincipal(principalName, map.getGroupClass())); } catch (Exception e) { NamingException ne = new NamingException( "Can't create a group " + principalName + " of class " + map.getGroupClass()); ne.initCause(e); throw ne; } } else if (!group && user) { members.add(new UserPrincipal(principalName)); } {code} > activemq-jaas authorization doesn't work with Karaf JAAS LoginModule > -------------------------------------------------------------------- > > Key: AMQ-3883 > URL: https://issues.apache.org/jira/browse/AMQ-3883 > Project: ActiveMQ > Issue Type: Improvement > Affects Versions: 5.6.0 > Reporter: Freeman Fang > Assignee: Dejan Bosanac > Fix For: 5.9.0 > > Attachments: AMQ-3883.patch > > > currently activemq-jaas can't work with karaf loginModule, the reason comes > from the compare between > amq GroupPrincipal and karaf UserPrincipal/RolePrincipal doesn't work > More details please see[1]. > We have a similar issue in Servicemix NMR[2] and the fix can honor the > compare between > amq GroupPrincipal and karaf UserPrincipal/RolePrincipal yet not introduce > any dependency between activemq-jaas and karaf jaas. > [1]http://karaf.922171.n3.nabble.com/Karaf-ActiveMQ-authorization-problem-td4024834.html > [2]https://issues.apache.org/jira/browse/SMX4NMR-283 -- This message was sent by Atlassian JIRA (v6.2#6252)