Re: Basic authentication of WAB using Jaas in Karaf - the trick doesn't work any longer w/ Karaf 4.2.9 and Camel 3.4.0

Thanks, I will take a look. Regards JB > Le 29 juin 2020 à 08:31, Gerald Kallas a écrit : > > I'm going to create the tickets for the issues. We may extend these so far > with additional information. > > Best > - Gerald > >> Jean-Baptiste Onofre hat am 29.06.2020 07:40 geschrieben: >> >>

Re: Basic authentication of WAB using Jaas in Karaf - the trick doesn't work any longer w/ Karaf 4.2.9 and Camel 3.4.0

I'm going to create the tickets for the issues. We may extend these so far with additional information. Best - Gerald > Jean-Baptiste Onofre hat am 29.06.2020 07:40 geschrieben: > > > I thought Gerald already explained it on the mailing list. My intention is > more to create the Jira with

Re: Basic authentication of WAB using Jaas in Karaf - the trick doesn't work any longer w/ Karaf 4.2.9 and Camel 3.4.0

I thought Gerald already explained it on the mailing list. My intention is more to create the Jira with the details. Regards JB > Le 29 juin 2020 à 07:33, Andrea Cosentino a écrit : > > I think it's good to have the details shared in public. > > Il lun 29 giu 2020, 07:30 Jean-Baptiste Onofre

Re: Basic authentication of WAB using Jaas in Karaf - the trick doesn't work any longer w/ Karaf 4.2.9 and Camel 3.4.0

I think it's good to have the details shared in public. Il lun 29 giu 2020, 07:30 Jean-Baptiste Onofre ha scritto: > Hi, > > Yes Karaf 4.2.9 upgraded to Pax Web 7.2.15 and Jetty 9.4.28.v20200408. > > Can you please send a private message about issues you have with Karaf > 4.2.9 and Camel 3.4.0

Re: Basic authentication of WAB using Jaas in Karaf - the trick doesn't work any longer w/ Karaf 4.2.9 and Camel 3.4.0

Hi, Yes Karaf 4.2.9 upgraded to Pax Web 7.2.15 and Jetty 9.4.28.v20200408. Can you please send a private message about issues you have with Karaf 4.2.9 and Camel 3.4.0 (as I’m working on camel karaf for 3.5.0) ? Thanks, Regards JB > Le 28 juin 2020 à 22:02, Gerald Kallas a écrit : > > I

Re: Basic authentication of WAB using Jaas in Karaf - the trick doesn't work any longer w/ Karaf 4.2.9 and Camel 3.4.0

I tested the combination Karaf 4.2.8 and Camel 3.3.0, with this the workaround works as expected. Seems that Jetty has been updated in Karaf 4.2.9? (The combination Karaf 4.2.8 and Camel 3.4.0 doesn't work due to other issues.) > Gerald Kallas hat am 28.06.2020 18:12 geschrieben: > > > Hi

Re: Basic authentication of WAB using Jaas in Karaf - the trick doesn't work any longer w/ Karaf 4.2.9 and Camel 3.4.0

Hi all, I was updating the runtime to Karaf 4.2.9 and Camel 3.4.0. after removing one of the org.eclipse.jetty.jaas.JAASLoginService entries in my etc/jetty.xml I'm getting an error as attached below. Neither hawtio nor my servlet are working any longer. Seems that now both entries of

Re: Basic authentication of WAB using Jaas in Karaf

Hello wt., 19 maj 2020 o 16:25 Gerald Kallas napisał(a): > Thanks, that helps also a lot. > > So, what's with the other question, is it possible to define roles, users > and passwords in multiple files and assign to a HTTP context? > I think it's not the role of this "http context processing"

Re: Basic authentication of WAB using Jaas in Karaf

Thanks, that helps also a lot. So, what's with the other question, is it possible to define roles, users and passwords in multiple files and assign to a HTTP context? Best - Gerald > Jean-Baptiste Onofre hat am 19. Mai 2020 07:02 > geschrieben: > > > Hi, > > Sorry I was busy with Karaf

Re: Basic authentication of WAB using Jaas in Karaf

Hi, Sorry I was busy with Karaf 4.2.9 preparation and ActiveMQ releases. About several port, yes, it’s possible: http://blog.nanthrax.net/?p=352 Then you have to assign servlet to port using VirtualHosts (no other way for now). I already created couple of

Fwd: Re: Basic authentication of WAB using Jaas in Karaf

authentication of WAB using Jaas in Karaf Hi Grzegorz, perfect, removing one org.eclipse.jetty.jaas.JAASLoginService and it works! Thanks a lot for digging into the details! I really appreciate this. Is there a reason that in the default jetty.xml exist 2 org.eclipse.jetty.jaas.JAASLoginService

Re: Basic authentication of WAB using Jaas in Karaf

Hi Grzegorz, perfect, removing one org.eclipse.jetty.jaas.JAASLoginService and it works! Thanks a lot for digging into the details! I really appreciate this. Is there a reason that in the default jetty.xml exist 2 org.eclipse.jetty.jaas.JAASLoginService definitions? One further question ..

Re: Basic authentication of WAB using Jaas in Karaf

Hello I'm glad you like it. Unfortunately it's OSGi specific solution. But the fact that OSGi allows that may still mean that flat-classpath approach is not the only one left out there ;) regards Grzegorz Grzybek pon., 18 maj 2020 o 17:01 Alex Soto napisał(a): > Thank you, Grzegorz, this is

Re: Basic authentication of WAB using Jaas in Karaf

Thank you, Grzegorz, this is excellent news! I'm looking forward for this to be improved in version 8, as it is very useful, and not only for Keycloak. In particular, for securing Camel Rest services, and perhaps there are many other use cases as well. Best regards, Alex soto > On May 18,

Re: Basic authentication of WAB using Jaas in Karaf

Hello I have some answer. First, the "http context processing" feature was mainly tested to "inject" Keycloak authenticator and I mostly tested it with pax-web-undertow. But I checked how it works with pax-web-jetty in the debugger. The key problem is that when Jetty's SecurityHandler is

Re: Basic authentication of WAB using Jaas in Karaf

Hi, I already also answered Gerald in another mail. I'm not quite sure but what might be an issue, is that the default http-context used in his application isn't bound to the underlying security realm. Therefore it's quite a possibility that there needs to be a configuration done in his own

Re: Basic authentication of WAB using Jaas in Karaf

I’m sorry, I don’t know why it's not working; it looks correct to me. Maybe somebody from the Pax-Web team can help you. The only suspicious thing is the warning: 2020-05-15T18:20:50,256 | WARN | qtp1611313605-201 | SecurityHandler | 229 - org.eclipse.jetty.util -

Re: Basic authentication of WAB using Jaas in Karaf

With "BASIC" the same. 2020-05-15T18:20:39,881 | INFO | CM Configuration Updater (Update: pid=org.ops4j.pax.web.context.f4d0bd8c-6751-447f-8067-2da2e2b7c45a) | HttpContextProcessing| 264 - org.ops4j.pax.web.pax-web-runtime - 7.2.14 | Updated configuration for

Re: Basic authentication of WAB using Jaas in Karaf

I’m not sure what is happening, but I noticed, you have ‘basic’ as lowercase, maybe it is case sensitive. Try uppercase: login.config.authMethod = BASIC Also, what is in your 'etc/jetty.xml’ and ‘etc/org.ops4j.pax.web.cfg’ files ? Best regards, Alex soto > On May 15, 2020, at 11:22 AM,

Re: Basic authentication of WAB using Jaas in Karaf

Hi Alex, yes, I'm passing the HTTP "Authorization" header for basic authentication. My users.properties looks like karaf = xxx,_g_:admingroup _g_\:admingroup = group,admin,manager,viewer,systembundles,ssh username1 = password1,admin I'm testing with the username1 password1 combination, the

Re: Basic authentication of WAB using Jaas in Karaf

Are passing the BASIC Authentication header with user name and password? The user names and roles are defined in the 'etc/users.properties’ file, check Karaf documentation https://karaf.apache.org/manual/latest/#_security_2 The

Re: Basic authentication of WAB using Jaas in Karaf

Thanks Alex, the API now is working after removing the "httpRegistry" part. Now I've the next issue. My org.ops4j.pax.web.context-admin.cfg looks like bundle.symbolicName=api.xml login.config.authMethod=BASIC login.config.realmName=karaf context.id=default security.constraint.1.url =