[Carbon-jira] [jira] Updated: (CARBON-8840) Non admin users with security permission are not allowed to add a new key store

Pavithra Madurangi (JIRA) jira at wso2.org
Thu Mar 3 02:19:24 PST 2011 

     [ https://wso2.org/jira/browse/CARBON-8840?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Pavithra Madurangi updated CARBON-8840:
---------------------------------------

    Summary: Non admin users with security permission are not allowed to add a new key store  (was: Non admin users with security permission is not allowed to add a new key store)

> Non admin users with security permission are not allowed to add a new key store
> -------------------------------------------------------------------------------
>
>                 Key: CARBON-8840
>                 URL: https://wso2.org/jira/browse/CARBON-8840
>             Project: WSO2 Carbon
>          Issue Type: Bug
>          Components: Identity Provider
>    Affects Versions: 3.2.0
>         Environment: Identity server 3.2.0
>            Reporter: Pavithra Madurangi
>            Assignee: Asela Pathberiya
>            Priority: High
>             Fix For: 3.2.0
>
>         Attachments: key_store.png
>
>
> -Create a user and assign security permission (login + security)
> -Sign in with that user and try to add a new key store
> Issue:
> ---------
> It gives following error. (Image attached)
> "Could not add the key store. Failed to add new resource /_system/governance/repository/security/key-stores/qaserver.jks. User pavithra is not authorized to update the parent collection /_system/governance/repository/security/key-stores."
> [2011-03-03 15:43:40,400] ERROR {org.wso2.carbon.registry.core.jdbc.Repository} -  Failed to add new resource /_system/governance/repository/security/key-stores/qaserver.jks. User pavithra is not authorized to update the parent collection /_system/governance/repository/security/key-stores.
> [2011-03-03 15:43:40,402] ERROR {org.wso2.carbon.security.keystore.KeyStoreAdmin} -  Failed to add new resource /_system/governance/repository/security/key-stores/qaserver.jks. User pavithra is not authorized to update the parent collection /_system/governance/repository/security/key-stores.
> org.wso2.carbon.registry.core.secure.AuthorizationFailedException: Failed to add new resource /_system/governance/repository/security/key-stores/qaserver.jks. User pavithra is not authorized to update the parent collection /_system/governance/repository/security/key-stores.
> 	at org.wso2.carbon.registry.core.jdbc.Repository.add(Repository.java:1011)
> 	at org.wso2.carbon.registry.core.jdbc.Repository.put(Repository.java:321)
> 	at org.wso2.carbon.registry.core.jdbc.EmbeddedRegistry.put(EmbeddedRegistry.java:681)
> 	at org.wso2.carbon.registry.core.session.UserRegistry.put(UserRegistry.java:617)
> 	at org.wso2.carbon.security.keystore.KeyStoreAdmin.addKeyStore(KeyStoreAdmin.java:237)
> 	at org.wso2.carbon.security.keystore.KeyStoreAdmin.addKeyStore(KeyStoreAdmin.java:183)
> 	at org.wso2.carbon.security.keystore.service.KeyStoreAdminServiceImpl.addKeyStore(KeyStoreAdminServiceImpl.java:35)
> 	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> 	at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
> 	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> 	at java.lang.reflect.Method.invoke(Method.java:597)
> 	at org.apache.axis2.rpc.receivers.RPCUtil.invokeServiceClass(RPCUtil.java:212)
> 	at org.apache.axis2.rpc.receivers.RPCInOnlyMessageReceiver.invokeBusinessLogic(RPCInOnlyMessageReceiver.java:66)
> 	at org.apache.axis2.receivers.AbstractMessageReceiver.receive(AbstractMessageReceiver.java:110)
> 	at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:181)
> 	at org.apache.axis2.transport.http.HTTPTransportUtils.processHTTPPostRequest(HTTPTransportUtils.java:172)
> 	at org.apache.axis2.transport.http.AxisServlet.doPost(AxisServlet.java:146)
> 	at org.wso2.carbon.core.transports.CarbonServlet.doPost(CarbonServlet.java:206)
> 	at javax.servlet.http.HttpServlet.service(HttpServlet.java:641)
> 	at javax.servlet.http.HttpServlet.service(HttpServlet.java:722)
> 	at org.eclipse.equinox.http.servlet.internal.ServletRegistration.handleRequest(ServletRegistration.java:90)
> 	at org.eclipse.equinox.http.servlet.internal.ProxyServlet.processAlias(ProxyServlet.java:111)
> 	at org.eclipse.equinox.http.servlet.internal.ProxyServlet.service(ProxyServlet.java:67)
> 	at javax.servlet.http.HttpServlet.service(HttpServlet.java:722)
> 	at org.wso2.carbon.bridge.BridgeServlet.service(BridgeServlet.java:155)
> 	at javax.servlet.http.HttpServlet.service(HttpServlet.java:722)
> 	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:306)
> 	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)
> 	at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:240)
> 	at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:161)
> 	at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:164)
> 	at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:100)
> 	at org.wso2.carbon.server.TomcatServer$1.invoke(TomcatServer.java:205)
> 	at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118)
> 	at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:383)
> 	at org.apache.coyote.http11.Http11NioProcessor.process(Http11NioProcessor.java:388)
> 	at org.apache.coyote.http11.Http11NioProtocol$Http11ConnectionHandler.process(Http11NioProtocol.java:357)
> 	at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1569)
> 	at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
> 	at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
> 	at java.lang.Thread.run(Thread.java:662)
> [2011-03-03 15:43:40,405] ERROR {org.apache.axis2.rpc.receivers.RPCInOnlyMessageReceiver} -  Failed to add new resource /_system/governance/repository/security/key-stores/qaserver.jks. User pavithra is not authorized to update the parent collection /_system/governance/repository/security/key-stores.
> org.wso2.carbon.security.SecurityConfigException: Failed to add new resource /_system/governance/repository/security/key-stores/qaserver.jks. User pavithra is not authorized to update the parent collection /_system/governance/repository/security/key-stores.
> 	at org.wso2.carbon.security.keystore.KeyStoreAdmin.addKeyStore(KeyStoreAdmin.java:242)
> 	at org.wso2.carbon.security.keystore.KeyStoreAdmin.addKeyStore(KeyStoreAdmin.java:183)
> 	at org.wso2.carbon.security.keystore.service.KeyStoreAdminServiceImpl.addKeyStore(KeyStoreAdminServiceImpl.java:35)
> 	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> 	at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
> 	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> 	at java.lang.reflect.Method.invoke(Method.java:597)
> 	at org.apache.axis2.rpc.receivers.RPCUtil.invokeServiceClass(RPCUtil.java:212)
> 	at org.apache.axis2.rpc.receivers.RPCInOnlyMessageReceiver.invokeBusinessLogic(RPCInOnlyMessageReceiver.java:66)
> 	at org.apache.axis2.receivers.AbstractMessageReceiver.receive(AbstractMessageReceiver.java:110)
> 	at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:181)
> 	at org.apache.axis2.transport.http.HTTPTransportUtils.processHTTPPostRequest(HTTPTransportUtils.java:172)
> 	at org.apache.axis2.transport.http.AxisServlet.doPost(AxisServlet.java:146)
> 	at org.wso2.carbon.core.transports.CarbonServlet.doPost(CarbonServlet.java:206)
> 	at javax.servlet.http.HttpServlet.service(HttpServlet.java:641)
> 	at javax.servlet.http.HttpServlet.service(HttpServlet.java:722)
> 	at org.eclipse.equinox.http.servlet.internal.ServletRegistration.handleRequest(ServletRegistration.java:90)
> 	at org.eclipse.equinox.http.servlet.internal.ProxyServlet.processAlias(ProxyServlet.java:111)
> 	at org.eclipse.equinox.http.servlet.internal.ProxyServlet.service(ProxyServlet.java:67)
> 	at javax.servlet.http.HttpServlet.service(HttpServlet.java:722)
> 	at org.wso2.carbon.bridge.BridgeServlet.service(BridgeServlet.java:155)
> 	at javax.servlet.http.HttpServlet.service(HttpServlet.java:722)
> 	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:306)
> 	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)
> 	at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:240)
> 	at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:161)
> 	at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:164)
> 	at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:100)
> 	at org.wso2.carbon.server.TomcatServer$1.invoke(TomcatServer.java:205)
> 	at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118)
> 	at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:383)
> 	at org.apache.coyote.http11.Http11NioProcessor.process(Http11NioProcessor.java:388)
> 	at org.apache.coyote.http11.Http11NioProtocol$Http11ConnectionHandler.process(Http11NioProtocol.java:357)
> 	at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1569)
> 	at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
> 	at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
> 	at java.lang.Thread.run(Thread.java:662)
> Caused by: org.wso2.carbon.registry.core.secure.AuthorizationFailedException: Failed to add new resource /_system/governance/repository/security/key-stores/qaserver.jks. User pavithra is not authorized to update the parent collection /_system/governance/repository/security/key-stores.
> 	at org.wso2.carbon.registry.core.jdbc.Repository.add(Repository.java:1011)
> 	at org.wso2.carbon.registry.core.jdbc.Repository.put(Repository.java:321)
> 	at org.wso2.carbon.registry.core.jdbc.EmbeddedRegistry.put(EmbeddedRegistry.java:681)
> 	at org.wso2.carbon.registry.core.session.UserRegistry.put(UserRegistry.java:617)
> 	at org.wso2.carbon.security.keystore.KeyStoreAdmin.addKeyStore(KeyStoreAdmin.java:237)
> 	... 36 more
> [2011-03-03 15:43:40,436] ERROR {org.wso2.carbon.security.ui.client.KeyStoreAdminClient} -  org.apache.axis2.AxisFault: Failed to add new resource /_system/governance/repository/security/key-stores/qaserver.jks. User pavithra is not authorized to update the parent collection /_system/governance/repository/security/key-stores.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://wso2.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the Carbon-jira mailing list