How to restrict access to mod_cluster manager

The mod_cluster distribution includes a manager application which can be used to test your cluster topology and manage as well deployed applications across the cluster. In this tutorial we will show how to protect access to the mod_cluster_manager application with a password.  

In order to protect our mod_cluster_manager application we will use a standard Apache directive named AuthUserFile directive which sets the name of a textual file containing the list of users and passwords for user authentication. The utility htpasswd is used to maintain the password file for HTTP Basic Authentication. Let's see a concrete example. we will create an user named "admin" with password "admin":

$ htpasswd -c /etc/modclusterpassword admin
New password: 
Re-type new password: 
Adding password for user admin

Here is the file created by htpasswd:

$ cat /etc/modclusterpassword
admin:J5MAMwR3Yj9Ck

Now let's include a few directives into our mod_cluster_manager definition, so that a basic HTTP authentication will be requested for accessing our manager web application:

<Location /mod_cluster_manager>
   SetHandler mod_cluster-manager

   AuthType Basic
   AuthName "MCM"
   AuthUserFile /etc/modclusterpassword
   Require user admin

   Order deny,allow
   Deny from all
   Allow from all
</Location>

Security note! Make sure that the AuthUserFile is stored outside the document tree of Apache. Do not put it in the directory that it protects. Otherwise, clients may be able to download the AuthUserFile.

Now restart Apache web server and try to access the mod_cluster_manager application:

mod_cluster tutorial jboss wildfly

As you can see, now Apache Web server prompts for BASIC authentication. 

Related articles available on mastertheboss.com

JBoss Clustering a Web Application

Please Note: This article cover JBoss AS 4/5/6 releases. If you w

Clustering EJB 3 with JBoss AS

To cluster a stateless session bean in EJB 3 all you need to do i

JBoss monitoring HTTP Session replication

In this article we'll show how to monitor HTTPSession replication

How do I change multicast address of JBoss cluster ?

Since JBoss AS 4.0.3, the jboss.partition.udpGroup property can b

JBoss farming service

What is the farming service ? this article explains about it, als

JBoss HTTP Session replication

HTTP session replication is used to replicate the state associate

Follow us on Twitter