[infinispan-issues] [JBoss JIRA] (ISPN-6210) "* lacks 'READ' permission" while executing scripts over TaskManager with authentication enabled

Anna Manukyan (JIRA) issues at jboss.org
Tue Feb 16 03:53:00 EST 2016 

Anna Manukyan created ISPN-6210:
-----------------------------------

             Summary: "* lacks 'READ' permission" while executing scripts over TaskManager with authentication enabled
                 Key: ISPN-6210
                 URL: https://issues.jboss.org/browse/ISPN-6210
             Project: Infinispan
          Issue Type: Bug
          Components: Tasks
            Reporter: Anna Manukyan


When creating an authentication enabled cacheManager/cache and trying to execute a script on it (no matter whether the "role" meta-tag is specified or no), the test throws the following exception:

{code}
java.security.PrivilegedActionException: java.lang.SecurityException: ISPN000287: Unauthorized access: subject 'Subject with principal(s): [TestPrincipal [name=pheidippides]]' lacks 'READ' permission
	at org.infinispan.security.Security.doAs(Security.java:145)
	at org.infinispan.scripting.SecureScriptingTaskManagerTest.testTask(SecureScriptingTaskManagerTest.java:111)
	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
	at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
	at java.lang.reflect.Method.invoke(Method.java:497)
	at org.testng.internal.MethodInvocationHelper.invokeMethod(MethodInvocationHelper.java:84)
	at org.testng.internal.Invoker.invokeMethod(Invoker.java:714)
	at org.testng.internal.Invoker.invokeTestMethod(Invoker.java:901)
	at org.testng.internal.Invoker.invokeTestMethods(Invoker.java:1231)
	at org.testng.internal.TestMethodWorker.invokeTestMethods(TestMethodWorker.java:127)
	at org.testng.internal.TestMethodWorker.run(TestMethodWorker.java:111)
	at org.testng.TestRunner.privateRun(TestRunner.java:767)
	at org.testng.TestRunner.run(TestRunner.java:617)
	at org.testng.SuiteRunner.runTest(SuiteRunner.java:348)
	at org.testng.SuiteRunner.runSequentially(SuiteRunner.java:343)
	at org.testng.SuiteRunner.privateRun(SuiteRunner.java:305)
	at org.testng.SuiteRunner.run(SuiteRunner.java:254)
	at org.testng.SuiteRunnerWorker.runSuite(SuiteRunnerWorker.java:52)
	at org.testng.SuiteRunnerWorker.run(SuiteRunnerWorker.java:86)
	at org.testng.TestNG.runSuitesSequentially(TestNG.java:1224)
	at org.testng.TestNG.runSuitesLocally(TestNG.java:1149)
	at org.testng.TestNG.run(TestNG.java:1057)
	at org.testng.IDEARemoteTestNG.run(IDEARemoteTestNG.java:72)
	at org.testng.RemoteTestNGStarter.main(RemoteTestNGStarter.java:122)
	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
	at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
	at java.lang.reflect.Method.invoke(Method.java:497)
	at com.intellij.rt.execution.application.AppMain.main(AppMain.java:144)
Caused by: java.lang.SecurityException: ISPN000287: Unauthorized access: subject 'Subject with principal(s): [TestPrincipal [name=pheidippides]]' lacks 'READ' permission
	at org.infinispan.security.impl.AuthorizationHelper.checkPermission(AuthorizationHelper.java:86)
	at org.infinispan.security.impl.AuthorizationManagerImpl.checkPermission(AuthorizationManagerImpl.java:37)
	at org.infinispan.security.impl.SecureCacheImpl.containsKey(SecureCacheImpl.java:364)
	at org.infinispan.scripting.impl.ScriptingManagerImpl.containsScript(ScriptingManagerImpl.java:137)
	at org.infinispan.scripting.impl.ScriptingTaskEngine.handles(ScriptingTaskEngine.java:48)
	at org.infinispan.tasks.impl.TaskManagerImpl.runTask(TaskManagerImpl.java:74)
	at org.infinispan.scripting.SecureScriptingTaskManagerTest$4.run(SecureScriptingTaskManagerTest.java:115)
	at org.infinispan.scripting.SecureScriptingTaskManagerTest$4.run(SecureScriptingTaskManagerTest.java:111)
	at org.infinispan.security.Security.doAs(Security.java:143)
	... 29 more
{code}

You can find the test here:
https://github.com/andyuk1986/infinispan/blob/4755853001f1f2dd52ca8dfb7870cb9c878ece8a/scripting/src/test/java/org/infinispan/scripting/SecureScriptingTaskManagerTest.java



--
This message was sent by Atlassian JIRA
(v6.4.11#64026)

More information about the infinispan-issues mailing list