[
https://issues.apache.org/jira/browse/DISPATCH-1273?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16780787#comment-16780787
]
ASF subversion and git services commented on DISPATCH-1273:
-----------------------------------------------------------
Commit ee82bac3d890f652bc5776c5b3954e6b30bde9c0 in qpid-dispatch's branch
refs/heads/master from Gordon Sim
[ https://gitbox.apache.org/repos/asf?p=qpid-dispatch.git;h=ee82bac ]
DISPATCH-1273: check permission to send to target for anonymous sender links
> 'to' field not authorized against valid targets for anonymous sender
> --------------------------------------------------------------------
>
> Key: DISPATCH-1273
> URL: https://issues.apache.org/jira/browse/DISPATCH-1273
> Project: Qpid Dispatch
> Issue Type: Bug
> Affects Versions: 1.5.0
> Reporter: Gordon Sim
> Assignee: Gordon Sim
> Priority: Major
>
> With following policy, attempts to attach a sender link to 'bar' will fail as
> expected, but if an anonymous sender is attached and a message is sent to
> 'bar', it gets through.
>
> {noformat}
> [
> ["vhost",
> {
> "id": "$default",
> "allowUnknownUser": true,
> "groups": {
> "$default" : {
> "users": "*",
> "remoteHosts": "*",
> "allowDynamicSource": true,
> "allowAnonymousSender": true,
> "sources": "*",
> "targets": "foo"
> }
> }
> }
> ]
> ]
> {noformat}
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
