You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@activemq.apache.org by "Jonas Lim (JIRA)" <ji...@apache.org> on 2006/11/27 15:38:03 UTC

[jira] Resolved: (AMQ-795) security plugin to deal with temporary queue and topics better

     [ https://issues.apache.org/activemq/browse/AMQ-795?page=all ]

Jonas Lim resolved AMQ-795.
---------------------------

    Resolution: Fixed

admin/write/read roles can now be assigned to temporary destinations: 

To assign roles to temp destinations , we need to add a tempAuthorizationEntry  inside the authorizationMap. 
We must have a specific admin role (ie. tempDestinationAdmins) when configuring the temporary destination authorization entries and just add this role to all users.   There's no need to include the destination attribute in the tempAuthorizationEntry  since the roles will be map to all temp destinations.

ie.  
..
 <authorizationMap>
     <authorizationEntries> 
         <authorizationEntry queue="QUEUE.USERS.>" "read="admins" write="admins" admin="admins"/>
         <authorizationEntry topic="TOPIC.USERS.>" read="admins" write="admins" admin="admins" />
     </authorizationEntries>

      <tempDestinationAuthorizationEntry>  
              <tempDestinationAuthorizationEntry read="tempDestinationAdmins" write="tempDestinationAdmins" admin="tempDestinationAdmins"/>
      </tempDestinationAuthorizationEntry>   
</authorizationMap>
...

added updates at : 

trunk :  479639




> security plugin to deal with temporary queue and topics better
> --------------------------------------------------------------
>
>                 Key: AMQ-795
>                 URL: https://issues.apache.org/activemq/browse/AMQ-795
>             Project: ActiveMQ
>          Issue Type: Improvement
>            Reporter: james strachan
>         Assigned To: Jonas Lim
>             Fix For: 4.2.0
>
>
> Allow a role to be specified for read/write/admin of temporary queue and temporary topics

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://issues.apache.org/activemq/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira