You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@activemq.apache.org by Hiram Chirino <hi...@hiramchirino.com> on 2013/06/03 15:25:39 UTC
Re: Securing ActiveMQ with Apache Shiro
On Fri, May 31, 2013 at 2:01 PM, Les Hazlewood <lh...@apache.org> wrote:
> Thanks for the feedback - this sounds great. I've also seen the Camel
> support for Shiro, and I think it's awesome!
>
> It looks like there is an existing Jira issue for ActiveMQ+Shiro work
> here: https://issues.apache.org/jira/browse/AMQ-3621 I'll just use
> that.
>
Cool.
> Also, unless anyone objects, I think I'm going to implement this in a
> fork of the GitHub mirror of the SVN trunk here:
> https://github.com/apache/activemq
>
> I understand that this is just a mirror of SVN, but this will allow me
> to share what I'm working on with you guys for collaboration (so I can
> get guidance or make recommended changes, etc). Then, when things
> look good, I can use that to create a single patch to submit to the
> Jira issue to apply to SVN. If anyone has any problems with this
> approach, please let me know.
+1
>
> Best,
>
> Les
>
> On Fri, May 31, 2013 at 3:00 AM, Claus Ibsen <cl...@gmail.com> wrote:
>> Hi Les
>>
>> This sounds really cool.
>>
>> I like Shiro very much as well, due its simplicity over JAAS etc.
>> For the Camel project we added camel-shiro integration 2.5 years.
>> http://camel.apache.org/shiro-security.html
>>
>> Great to see your work on this, and would love to see it included out
>> of the box in Apache ActiveMQ.
>>
>>
>> On Fri, May 31, 2013 at 3:53 AM, Les Hazlewood <lh...@apache.org> wrote:
>>> Hi dev team,
>>>
>>> I'm developing an ActiveMQ Broker Plugin that uses Apache Shiro to
>>> secure all aspects of ActiveMQ (at least that I'm able to tell) such
>>> as authenticating connections, authorizing access to destinations,
>>> etc.
>>>
>>> While ActiveMQ's default security capabilities are a fine effort, this
>>> plugin allows for a more powerful security experience such as
>>> fine-grained access control via permissions, more security data store
>>> integrations via Shiro Realms, etc, as well as being easier to
>>> understand for most people than JAAS for example.
>>>
>>> If the ActiveMQ dev team is willing to accept it, I'd like to
>>> contribute this to the project, probably as a new Maven module under
>>> https://svn.apache.org/repos/asf/activemq/trunk/activemq-shiro. As an
>>> ASF committer and PMC Chair for Shiro, my CLAs are already in order.
>>>
>>> Is this something that the ActiveMQ dev team would be willing to
>>> adopt? I'd be happy to provide a patch if so, as well as a new
>>> documentation page on the ActiveMQ website explaining how to use it.
>>>
>>> Thoughts?
>>>
>>> Thanks for any feedback,
>>>
>>> --
>>> Les Hazlewood | @lhazlewood
>>> CTO, Stormpath | http://stormpath.com | @goStormpath | 888.391.5282
>>> PMC Chair, Apache Shiro | http://shiro.apache.org
>>
>>
>>
>> --
>> Claus Ibsen
>> -----------------
>> www.camelone.org: The open source integration conference.
>>
>> Red Hat, Inc.
>> FuseSource is now part of Red Hat
>> Email: cibsen@redhat.com
>> Web: http://fusesource.com
>> Twitter: davsclaus
>> Blog: http://davsclaus.com
>> Author of Camel in Action: http://www.manning.com/ibsen
--
Hiram Chirino
Engineering | Red Hat, Inc.
hchirino@redhat.com | fusesource.com | redhat.com
skype: hiramchirino | twitter: @hiramchirino
blog: Hiram Chirino's Bit Mojo