View Issue Details

IDProjectCategoryView StatusLast Update
0001191bareos-core[All Projects] webuipublic2020-02-12 15:40
ReporterkhvaleraAssigned To 
PriorityhighSeveritycrashReproducibilityalways
Status newResolutionopen 
PlatformLinuxOSArch LinuxOS Versionx64
Product Version19.2.6 
Fixed in Version 
Summary0001191: The web interface runs under any login and password
DescriptionTo enter the web interface starts under any arbitrary username and password.
How to fix it?
Steps To Reproduce/etc/bareos/bareos-dir.d/console/web-admin.conf

Console {
  Name = web-admin
  Password = "123"
  Profile = "webui-admin"
}

/etc/bareos/bareos-dir.d/profile/webui-admin.conf

Profile {
  Name = "webui-admin"
  CommandACL = !.bvfs_clear_cache, !.exit, !.sql, !configure, !create, !delete, !purge, !prune, !sqlquery, !umount, !unmount, *all*
  Job ACL = *all*
  Schedule ACL = *all*
  Catalog ACL = *all*
  Pool ACL = *all*
  Storage ACL = *all*
  Client ACL = *all*
  FileSet ACL = *all*
  Where ACL = *all*
}

/etc/bareos-webui/directors.ini

[bareos_dir]
enabled = "yes"
diraddress = "localhost"
dirport>= 9101
;UsePamAuthentication = yes
pam_console_name = "web-admin"
pam_console_password = "123"
Tagswebui
bareos-master: impact
bareos-master: action
bareos-19.2: impact
bareos-19.2: action
bareos-18.2: impact
bareos-18.2: action
bareos-17.2: impact
bareos-17.2: action
bareos-16.2: impact
bareos-16.2: action
bareos-15.2: impact
bareos-15.2: action
bareos-14.2: impact
bareos-14.2: action
bareos-13.2: impact
bareos-13.2: action
bareos-12.4: impact
bareos-12.4: action

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2020-02-12 15:40 khvalera New Issue
2020-02-12 15:40 khvalera Tag Attached: webui