Introduce read-only and modify authorisation for all objects in a virtual host
------------------------------------------------------------------------------
Key: QPID-419
URL: https://issues.apache.org/jira/browse/QPID-419
Project: Qpid
Issue Type: Improvement
Components: Java Broker
Affects Versions: M1, M2
Reporter: Marnie McCormack
Assigned To: Martin Ritchie
Fix For: M2
At present, any authenticated user can perform actions on all available objects
e.g. queues, topics, etc
>From the management console, particularly, this introduces security risk
>since we can move messages, create queues etc from the console very simply.
To address this issue, initially, we need to introduce a simple two level
permission model for all objects contained in a virtual host such that
authenticated users have one of the two permissions:
- read-only i.e. can access but not change any object (i.e. cannot write to a
queue but can see its contents)
- modify i.e. can amend the object (i.e. can move messages into/out of a queue,
delete the queue etc)
Some detailed thought should be given to each object (queue, topic, message,
connection) to define the set of applicable read-only/modify actions for each
appropriately.
Bear in mind that the read-only permission is mainly driven at the management
console since by definition most users connecting will require modify
permissions to send/receive messages !
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
