You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@qpid.apache.org by "ASF subversion and git services (JIRA)" <ji...@apache.org> on 2014/06/18 09:41:06 UTC
[jira] [Commented] (QPID-5817) [C++ broker] Improve ACL
authorisation of QMF methods and queries
[ https://issues.apache.org/jira/browse/QPID-5817?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14034940#comment-14034940 ]
ASF subversion and git services commented on QPID-5817:
-------------------------------------------------------
Commit 1603364 from [~pmoravec] in branch 'qpid/trunk'
[ https://svn.apache.org/r1603364 ]
QPID-5817: [C++ broker] Improve ACL authorisation of QMF methods and queries
> [C++ broker] Improve ACL authorisation of QMF methods and queries
> -----------------------------------------------------------------
>
> Key: QPID-5817
> URL: https://issues.apache.org/jira/browse/QPID-5817
> Project: Qpid
> Issue Type: Improvement
> Components: C++ Broker
> Affects Versions: 0.26
> Reporter: Pavel Moravec
> Assignee: Pavel Moravec
> Priority: Minor
>
> There is no authorisation implemented for several QMF methods and all queries. In particular if a user is allowed to publish to QMF exchange, there is no way how to fine-tune permissions to
> 1) QMF methods with arguments:
> queue.purge
> queue
> broker.queueMoveMessages
> srcQueue
> dstQueue
> broker.queueRedirect
> sourceQueue
> targetQueue
>
> queue.reroute
> queue
> exchange
> useAltExchange
> 2) QMF queries (either per object name or class name)
--
This message was sent by Atlassian JIRA
(v6.2#6252)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org