This is an automated email from the ASF dual-hosted git repository.
jbertram pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/activemq-artemis.git
The following commit(s) were added to refs/heads/main by this push:
new 5f7faa47cc NO-JIRA doc syntax/formatting updates
5f7faa47cc is described below
commit 5f7faa47ccf30c31cce217c7b6dcf91563eeab67
Author: Justin Bertram <[email protected]>
AuthorDate: Tue Nov 7 16:55:55 2023 -0600
NO-JIRA doc syntax/formatting updates
---
docs/user-manual/security.adoc | 12 ++++++------
1 file changed, 6 insertions(+), 6 deletions(-)
diff --git a/docs/user-manual/security.adoc b/docs/user-manual/security.adoc
index 10ba3f24ed..9fcfaf3610 100644
--- a/docs/user-manual/security.adoc
+++ b/docs/user-manual/security.adoc
@@ -113,14 +113,14 @@ Let's look at an example of that, here's another
`security-setting` block:
</security-setting>
----
-In this `security-setting` block the match 'globalqueues.europe.orders.#' is
more specific than the previous match 'globalqueues.europe.#'.
-So any addresses which match 'globalqueues.europe.orders.#' will take their
security settings _only_ from the latter security-setting block.
+In this `security-setting` block the match `globalqueues.europe.orders.\#` is
more specific than the previous match `globalqueues.europe.#`.
+So any addresses which match `globalqueues.europe.orders.#` will take their
security settings _only_ from the latter security-setting block.
-Note that settings are not inherited from the former block.
-All the settings will be taken from the more specific matching block, so for
the address 'globalqueues.europe.orders.plastics' the only permissions that
exist are `send` and `consume` for the role europe-users.
-The permissions `createDurableQueue`, `deleteDurableQueue`,
`createNonDurableQueue`, `deleteNonDurableQueue` are not inherited from the
other security-setting block.
+Note that *settings are not inherited* from the former block.
+All the settings will be taken from the more specific matching block, so for
the address `globalqueues.europe.orders.plastics` the only permissions that
exist are `send` and `consume` for the role `europe-users`.
+The permissions `createDurableQueue`, `deleteDurableQueue`,
`createNonDurableQueue`, `deleteNonDurableQueue` are not inherited from the
other `security-setting` block.
-By not inheriting permissions, it allows you to effectively deny permissions
in more specific security-setting blocks by simply not specifying them.
+By not inheriting permissions, it allows you to effectively deny permissions
in more specific `security-setting` blocks by simply not specifying them.
Otherwise it would not be possible to deny permissions in sub-groups of
addresses.
=== Fine-grained security using fully qualified queue name