Hi,
On Mon, Apr 22, 2024 at 6:46 PM Justin Bertram <jbert...@apache.org> wrote:
> This was caused by ARTEMIS-4582 [1]. I've opened ARTEMIS-4742 [2] and
> sent a PR [3] to address the problem.
Thanks Justin.
On Tuesday, April 23, 2024 3:27 PM Stephen Baker
<stephen.ba...@motorolasolutions.com.INVALID> wrote:
> Can you clarify what condition triggers this (i.e. when would there be a
> peristable security setting with an empty write or view buffer)?
I have found one manually created security-setting:
getRolesAsJSON(TEST.QUEUE)
[{"name":"amq","send":true,"consume":false,"createDurableQueue":false,"deleteDurableQueue":false,"createNonDurableQueue":false,"deleteNonDurableQueue":false,"manage":false,"browse":false,"createAddress":false,"deleteAddress":false,"view":false,"edit":false}]
It was created for testing purposes using API with command:
curl -X POST -H "Content-Type: application/json" -H
"Origin:https://${HOSTNAME}:8161"; -u ${ARTEMIS_USER}:${ARTEMIS_PASSWORD}
https://${HOSTNAME}:8161/console/jolokia -d '{"type" : "EXEC", "mbean" :
"org.apache.activemq.artemis:broker=\"'${HOSTNAME}'\"", "operation" :
"addSecuritySettings(java.lang.String,java.lang.String,java.lang.String,java.lang.String,java.lang.String,java.lang.String,java.lang.String,java.lang.String)",
"arguments" : ["TEST.QUEUE","amq","","","","","",""]}'
And I have reproduced the problem: created new instance of Artemis 2.32.0,
added this security setting using curl (this command works in linux shell), and
then stopped and upgraded this instance to 2.33.0.
After upgrading, it has failed to start with similar error.
BTW it is difficult to find security setting for arbitrary address match
without knowing it's exact name, but one of our developers has written an
application which starts embedded Artemis with binding files which were copied
from working instance of Artemis and exports all found address matches with
permissions. It could be great to have some API method to export all persisted
security settings.
--
Best regards,
Aleksandr
-----------------------------------
This message and any attachment are confidential and may be privileged or
otherwise protected from disclosure. If you are not the intended recipient any
use, distribution, copying or disclosure is strictly prohibited. If you have
received this message in error, please notify the sender immediately either by
telephone or by e-mail and delete this message and any attachment from your
system. Correspondence via e-mail is for information purposes only. AO
Raiffeisenbank neither makes nor accepts legally binding statements by e-mail
unless otherwise agreed.
-----------------------------------
