[ https://issues.apache.org/jira/browse/ARTEMIS-4263?focusedWorklogId=860707&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-860707 ]
ASF GitHub Bot logged work on ARTEMIS-4263: ------------------------------------------- Author: ASF GitHub Bot Created on: 05/May/23 09:00 Start Date: 05/May/23 09:00 Worklog Time Spent: 10m Work Description: gtully merged PR #4458: URL: https://github.com/apache/activemq-artemis/pull/4458 Issue Time Tracking ------------------- Worklog Id: (was: 860707) Time Spent: 2h 20m (was: 2h 10m) > support access to our JaasCallbackhandler from a jdk http Authenticator > ----------------------------------------------------------------------- > > Key: ARTEMIS-4263 > URL: https://issues.apache.org/jira/browse/ARTEMIS-4263 > Project: ActiveMQ Artemis > Issue Type: Improvement > Components: JAAS > Affects Versions: 2.28.0 > Reporter: Gary Tully > Assignee: Gary Tully > Priority: Major > Time Spent: 2h 20m > Remaining Estimate: 0h > > To allow the jolokia jvm agent to utilise jaas with our callback handler, it > is necessary to provide a wrapper that is aware of the capabilities of the > various artemis login modules and provide the necessary callback > implementation > httpserver supports an extension point in the form of a > {{com.sun.net.httpserver.Authenticator}} that we can use. the jolokia jvm > agent has an authenticator that does jaas but is limited to plain > credentials. We can plug in a similar Artemis jaas delegating authenticator > and do proper rbac when the jolokia jvm agent is in play. > This will allow us to reduce the surface are that we expose to support > jolokia, avoiding the need for jetty. > > -- This message was sent by Atlassian Jira (v8.20.10#820010)