Uploaded image for project: 'Dev - Nexus Repo'
  1. Dev - Nexus Repo
  2. NEXUS-6132

nexus security diagnostic queries crowd realm even when it is not configured

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.7
    • Fix Version/s: 2.8
    • Component/s: Crowd, Security
    • Labels:
      None
    • Sprint:
      Sprint 7, Sprint 8

      Description

      Start nexus 2.7

      ask for security diagnostic for a user that does not exist

      curl -v http://localhost:8081/nexus/service/siesta/atlas/security-diagnostic/user/developer -u admin:admin123

      it appears nexus will try to look for the user in crowd realm, even though it is not configured.

      com.sonatype.nexus.crowd.internal.CrowdUserManager - Unable to look up user developer due to java.lang.NullPointerException/null

      jvm 1    | 2013-11-20 12:23:20 INFO  [qtp1427220332-78] admin org.sonatype.nexus.atlas.rest.SecurityDiagnosticResource - Generating security diagnostics for user: developer
      jvm 1    | 2013-11-20 12:23:20 INFO  [qtp1427220332-78] admin com.sonatype.nexus.crowd.internal.config.DefaultCrowdPluginConfiguration - Creating new Crowd configuration: /Users/plynch/dev/sonatype/nexus-all/nexus-bundles/assemblies/nexus-pro/target/nexus-professional-2.7.0-SNAPSHOT-bundle/nexus-professional-2.7.0-SNAPSHOT/../sonatype-work/nexus/conf/crowd-plugin.xml
      jvm 1    | 2013-11-20 12:23:20 WARN  [qtp1427220332-78] admin com.sonatype.nexus.crowd.internal.CrowdUserManager - Unable to look up user developer due to java.lang.NullPointerException/null
      jvm 1    | 2013-11-20 12:23:20 WARN  [qtp1427220332-78] admin org.sonatype.sisu.siesta.server.internal.mappers.ThrowableExceptionMapper - (ID 2be49564-7483-422d-a64c-0dd9e7273f3b) Response: [500] ErrorXO{id='2be49564-7483-422d-a64c-0dd9e7273f3b', message='User: 'developer' could not be found. '} mapped from org.sonatype.security.usermanagement.UserNotFoundException/User: 'developer' could not be found. 
      
      

        Attachments

          Activity

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            plynch Peter Lynch
            Last Updated By:
            Peter Lynch Peter Lynch
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:
              Date of First Response:

                tigCommentSecurity.panel-title