Hiram, In our environment, we may have to use IP based security.
One way to do it would be to have a JAAS module that would not require any login/passcode (like the guest module) and that would add a principal containing the IP address of the origin of the connection. This way, we can build authentication and authorization on top of it. We can also add it to the message header thanks to add_user_header and have traceability (= where does this messge come from?). Does it make sense to add this to Apollo? Cheers, Lionel
