[
https://issues.apache.org/jira/browse/ARTEMIS-5187?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17901742#comment-17901742
]
ASF subversion and git services commented on ARTEMIS-5187:
----------------------------------------------------------
Commit dbd2e9342f7839b54b595e41cc2f818e10feac37 in activemq-artemis's branch
refs/heads/main from Domenico Francesco Bruscino
[ https://gitbox.apache.org/repos/asf?p=activemq-artemis.git;h=dbd2e9342f ]
ARTEMIS-5187 Fix management authorization checks after authentication failures
When the ArtemisRbacMBeanServerBuilder class is used for the RBAC management,
a clash of authentication cache keys between clients failing authentication and
web console authenticated users can cause web console authenticated users to
receive authorization errors, blank screens and similar issues after successful
login to the console.
> ArtemisRbacMBeanServerBuilder causes AMQ229031 errors after authentication
> failures
> -----------------------------------------------------------------------------------
>
> Key: ARTEMIS-5187
> URL: https://issues.apache.org/jira/browse/ARTEMIS-5187
> Project: ActiveMQ Artemis
> Issue Type: Bug
> Reporter: Domenico Francesco Bruscino
> Assignee: Domenico Francesco Bruscino
> Priority: Major
> Labels: pull-request-available
> Time Spent: 20m
> Remaining Estimate: 0h
>
> When the ArtemisRbacMBeanServerBuilder class is used for the RBAC management,
> a clash of authentication cache keys between clients failing authentication
> and web console authenticated users can cause web console authenticated users
> to receive authorization errors, blank screens and similar issues after
> successful login to the console.
> {code}
> WARN [org.apache.activemq.artemis.core.server] AMQ222216: Security problem
> while authenticating: AMQ229031: Unable to validate user from /x.x.x.x:x.
> Username: null; SSL certificate subject DN: unavailable
> [AUDIT](Thread-1 (activemq-netty-threads)) INFO
> [org.apache.activemq.audit.resource] AMQ601716: User [email protected]:x
> failed authentication on connection fcc9b169, reason: AMQ229031: Unable to
> validate user from /x.x.x.x:x. Username: null; SSL certificate subject DN:
> unavailable
> WARN [org.apache.activemq.artemis.core.server] AMQ222216: Security problem
> while authenticating: AMQ229031: Unable to validate user from management.
> Username: null; SSL certificate subject DN: unavailable
> [AUDIT](qtp140163428-111) INFO [org.apache.activemq.audit.resource]
> AMQ601716: User anonymous@internal failed authentication on connection
> management, reason: AMQ229031: Unable to validate user from management.
> Username: null; SSL certificate subject DN: unavailable
> WARN [org.apache.activemq.artemis.core.server] AMQ222216: Security problem
> while authenticating: AMQ229031: Unable to validate user from management.
> Username: null; SSL certificate subject DN: unavailable
> [AUDIT](qtp140163428-111) INFO [org.apache.activemq.audit.resource]
> AMQ601716: User anonymous@internal failed authentication on connection
> management, reason: AMQ229031: Unable to validate user from management.
> Username: null; SSL certificate subject DN: unavailable
> {code}
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
For further information, visit: https://activemq.apache.org/contact
