You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@qpid.apache.org by "Pavel Moravec (JIRA)" <ji...@apache.org> on 2014/06/18 09:43:03 UTC
[jira] [Resolved] (QPID-5817) [C++ broker] Improve ACL
authorisation of QMF methods and queries
[ https://issues.apache.org/jira/browse/QPID-5817?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Pavel Moravec resolved QPID-5817.
---------------------------------
Resolution: Fixed
Fix Version/s: 0.29
Committed as r1603364.
> [C++ broker] Improve ACL authorisation of QMF methods and queries
> -----------------------------------------------------------------
>
> Key: QPID-5817
> URL: https://issues.apache.org/jira/browse/QPID-5817
> Project: Qpid
> Issue Type: Improvement
> Components: C++ Broker
> Affects Versions: 0.26
> Reporter: Pavel Moravec
> Assignee: Pavel Moravec
> Priority: Minor
> Fix For: 0.29
>
>
> There is no authorisation implemented for several QMF methods and all queries. In particular if a user is allowed to publish to QMF exchange, there is no way how to fine-tune permissions to
> 1) QMF methods with arguments:
> queue.purge
> queue
> broker.queueMoveMessages
> srcQueue
> dstQueue
> broker.queueRedirect
> sourceQueue
> targetQueue
>
> queue.reroute
> queue
> exchange
> useAltExchange
> 2) QMF queries (either per object name or class name)
--
This message was sent by Atlassian JIRA
(v6.2#6252)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org