Syntax error when configuring TextFileCertificateLoginModule as a secret with ActiveMQArtemis CR

Solution Verified - Updated -

Issue

I am following the documentation https://docs.redhat.com/en/documentation/red_hat_amq_broker/7.12/html-single/deploying_amq_broker_on_openshift/index#proc-br-configuring-jaas-login-modules-for-authentication_broker-ocp to setup a custom login module for AMQ deployed to Openshift.

I created a secret for "custom-jaas-config" with the login.config file as well as cert-users.properties and cert-roles.properties. I referenced the secret as an extraMount in our ActiveMQArtemis CR.

But when I create the CR, I get a validation error:

InvalidExtraMount.Spec.DeploymentPlan.ExtraMounts.Secrets, content of login.config key in secret custom-jaas-config does not match supported jaas config file syntax

I've tried a few variations of moving the TextFileCertificateLoginModule to its own security domain or as part of the activemq domain but still get that error message. Using just the default login module works.

oc create secret generic custom-jaas-config --from-file=./cert_based_auth/login.config --from-file=./cert_based_auth/cert-roles.properties --from-file=./cert_based_auth/cert-users.properties

oc create -f cert_based_auth/broker_activemqartemis_cr.yaml

Environment

  • Red Hat AMQ 7.12.2

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content