[rabbitmq-discuss] Creating an auth plugin (Kerberos)
Simon Lundström
simlu at su.se
Fri Feb 15 14:13:05 GMT 2013
Hm, I have a weird issue now that I can't debug since there is no log at
all.
I have configured my plugin to be used before the internal one:
{auth_backends, [rabbit_auth_backend_kerberos, rabbit_auth_backend_internal]},
And if I allow all login attempts in my plugin, noone (not "internal_admin"
specified in the internal database nor "virtual-user" which is supposed to be
able to access the system) can access the API (so it disables the CLI and
management GUI too).
However, if I deny all login attempts in my plugin internal_admin can login but
obviously not my virtual-user.
# rabbitmqadmin list users
+-------------------+--------------------------+---------------+
| name | password_hash | tags |
+-------------------+--------------------------+---------------+
| internal_admin | the_password_hash_really | administrator |
| virtual-user | | administrator |
+-------------------+--------------------------+---------------+
# rabbitmqadmin list permissions
+-------+-----------+------+-------------------+-------+
| vhost | configure | read | user | write |
+-------+-----------+------+-------------------+-------+
| / | .* | .* | internal_admin | .* |
| / | .* | .* | virtual-user | .* |
+-------+-----------+------+-------------------+-------+
As I said, there are no logs so I really have nothing to go on here = /
Oh, and here's the code
<https://github.com/simmel/rabbitmq-auth-backend-kerberos/tree/5eaccf2>
Thanks and have a great weekend!
- Simon
More information about the rabbitmq-discuss
mailing list