[
https://issues.apache.org/jira/browse/AMQ-3883?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13295454#comment-13295454
]
Freeman Fang edited comment on AMQ-3883 at 6/15/12 4:47 AM:
------------------------------------------------------------
Hi,
As you said, your code will honor Principal from any other jaas
implementations, I'm not sure Activemq would accept it, as it MIGHT cause
security hole. But Principal from karaf could be considered as trusted
Principal.
Anyway, let Activemq team make this decision.
Regards
Freeman
was (Author: ffang):
Hi,
As you said, your code will honor Principal from any other jaas
implementations, I'm not sure Activemq would accept it, as it MIGHT cause
security hole.
Anyway, let Activemq team make this decision.
Regards
Freeman
> activemq-jaas authorization doesn't work with Karaf JAAS LoginModule
> --------------------------------------------------------------------
>
> Key: AMQ-3883
> URL: https://issues.apache.org/jira/browse/AMQ-3883
> Project: ActiveMQ
> Issue Type: Bug
> Reporter: Freeman Fang
> Attachments: AMQ-3883.patch
>
>
> currently activemq-jaas can't work with karaf loginModule, the reason comes
> from the compare between
> amq GroupPrincipal and karaf UserPrincipal/RolePrincipal doesn't work
> More details please see[1].
> We have a similar issue in Servicemix NMR[2] and the fix can honor the
> compare between
> amq GroupPrincipal and karaf UserPrincipal/RolePrincipal yet not introduce
> any dependency between activemq-jaas and karaf jaas.
> [1]http://karaf.922171.n3.nabble.com/Karaf-ActiveMQ-authorization-problem-td4024834.html
> [2]https://issues.apache.org/jira/browse/SMX4NMR-283
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
