[jira] [Updated] (QPID-3918) Add management acl-query test methods to C++ broker ACL plugin

[Chuck Rolke (Updated) (JIRA)]

     [ 
https://issues.apache.org/jira/browse/QPID-3918?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Chuck Rolke updated QPID-3918:
------------------------------

    Attachment: acl-test-01-brokerlog.txt
                acl-test-01.log
                acl-test-01-rules.acl
                acl-test-01.py

Refreshed user test scenario:
1. Start the broker using the acl-test-01-rules.acl file.
2. Run the python script acl-test-01.py
3. The python output is shown in acl-test-01.log
4. The broker was started with QPID_LOG_ENABLE=debug+:acl
   A short bit of the broker log is in acl-test-01-brokerlog.txt

The ACL wiki page could use a description of how a user uses these features to 
verify his ACL settings.
                
> Add management acl-query test methods to C++ broker ACL plugin
> --------------------------------------------------------------
>
>                 Key: QPID-3918
>                 URL: https://issues.apache.org/jira/browse/QPID-3918
>             Project: Qpid
>          Issue Type: New Feature
>          Components: C++ Broker
>    Affects Versions: 0.14
>            Reporter: Chuck Rolke
>            Assignee: Chuck Rolke
>         Attachments: acl-test-01-brokerlog.txt, acl-test-01-rules.acl, 
> acl-test-01.log, acl-test-01.py
>
>
> In its current form the ACL module is not testable in a customer deployment. 
> The ACL module loads the ACL file and from then on only real-world activity 
> triggers allow and deny decisions. 
> This feature proposal adds two management methods that are directly tied to 
> the ACL decision Lookup functions. Using them a customer may start a dummy 
> broker process that uses his actual (1) ACL rule file. Then using a 
> management application the customer may fire off a set of lookups against his 
> rule file to see if the ACL rules deliver the intended results.
> This feature could also be used to augment the self tests. It is very hard to 
> stage enough driver code to trigger some of the ACL queries. Using the 
> proposed methods then the self test can launch any ACL query directly.
> (1) As usual the ACL file must be bent enough to allow 'anonymous' to have 
> access to the management methods

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@qpid.apache.org
For additional commands, e-mail: dev-h...@qpid.apache.org