You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@activemq.apache.org by "ASF subversion and git services (JIRA)" <ji...@apache.org> on 2017/10/16 14:44:00 UTC

[jira] [Commented] (ARTEMIS-534) Allow JMX configuration from broker.xml

    [ https://issues.apache.org/jira/browse/ARTEMIS-534?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16206005#comment-16206005 ] 

ASF subversion and git services commented on ARTEMIS-534:
---------------------------------------------------------

Commit 62a2b14dd0497b9b6833e0e3c15c2725ca3bf717 in activemq-artemis's branch refs/heads/master from [~andytaylor]
[ https://git-wip-us.apache.org/repos/asf?p=activemq-artemis.git;h=62a2b14 ]

ARTEMIS-1463 - add role based authentication to the JMX objects

This is done by creating a guard and using JAAS to check for access to mbean objects and their methods.

NB this also implements https://issues.apache.org/jira/browse/ARTEMIS-534

https://issues.apache.org/jira/browse/ARTEMIS-1463


> Allow JMX configuration from broker.xml
> ---------------------------------------
>
>                 Key: ARTEMIS-534
>                 URL: https://issues.apache.org/jira/browse/ARTEMIS-534
>             Project: ActiveMQ Artemis
>          Issue Type: New Feature
>    Affects Versions: 1.2.0
>            Reporter: Lionel Cons
>
> Currently, JMX is partially controlled from {{broker.xml}} with things like:
> {code}
> <jmx-management-enabled>true</jmx-management-enabled>
> <jmx-domain>my.org.apache.activemq</jmx-domain>
> {code}
> However, remote access configuration currently ends up in {{artemis.profile}} with many extra arguments such as:
> {code}
> JAVA_ARGS="$JAVA_ARGS -Dcom.sun.management.jmxremote=true -Dcom.sun.management.jmxremote.port=1099 -Dcom.sun.management.jmxremote.rmi.port=1099 -Dcom.sun.management.jmxremote.ssl=false -Dcom.sun.management.jmxremote.password.file=${ARTEMIS_INSTANCE}/etc/jmx.password -Dcom.sun.management.jmxremote.access.file=${ARTEMIS_INSTANCE}/etc/jmx.access"
> {code}
> It would be much better to control JMX from one place only, like ActiveMQ 5 does via its {{<managementContext>}} element. It could appear as:
> {code}
> <jmx enabled="true" jmxremote="true">
>   <domain>my.org.apache.activemq</domain>
>   <connect-port>1099</connect-port>
>   <rmi-port>1098</rmi-port>
>   <password-file>${artemis.instance}/etc/jmx.password</password-file>
>   <access-file>${artemis.instance}/etc/jmx.access</access-file>
> </jmx>
> {code}



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)