[ https://issues.apache.org/activemq/browse/AMQ-795?page=all ]
Jonas Lim resolved AMQ-795.
---------------------------
Resolution: Fixed
admin/write/read roles can now be assigned to temporary destinations:
To assign roles to temp destinations , we need to add a tempAuthorizationEntry
inside the authorizationMap.
We must have a specific admin role (ie. tempDestinationAdmins) when configuring
the temporary destination authorization entries and just add this role to all
users. There's no need to include the destination attribute in the
tempAuthorizationEntry since the roles will be map to all temp destinations.
ie.
..
<authorizationMap>
<authorizationEntries>
<authorizationEntry queue="QUEUE.USERS.>" "read="admins"
write="admins" admin="admins"/>
<authorizationEntry topic="TOPIC.USERS.>" read="admins" write="admins"
admin="admins" />
</authorizationEntries>
<tempDestinationAuthorizationEntry>
<tempDestinationAuthorizationEntry read="tempDestinationAdmins"
write="tempDestinationAdmins" admin="tempDestinationAdmins"/>
</tempDestinationAuthorizationEntry>
</authorizationMap>
...
added updates at :
trunk : 479639
> security plugin to deal with temporary queue and topics better
> --------------------------------------------------------------
>
> Key: AMQ-795
> URL: https://issues.apache.org/activemq/browse/AMQ-795
> Project: ActiveMQ
> Issue Type: Improvement
> Reporter: james strachan
> Assigned To: Jonas Lim
> Fix For: 4.2.0
>
>
> Allow a role to be specified for read/write/admin of temporary queue and
> temporary topics
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://issues.apache.org/activemq/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
