On 12/05/16 20:00, Gordon Sim wrote:
On 12/05/16 19:50, Justin Ross wrote:
Another way perhaps would be to have policy for addresses.
I think you would have different permissions for different addresses.
i.e. in a given application policy you would define which
sources/targets users in a given group could link to.
The only case I see where it would be sensible to have the same
source/target addresses used in different application policies would be
if those addresses referred to different paths. I.e. a full multi-tenant
solution. Otherwise it just seems like a liability.
Put another way, I don't think you should get different access rights to
the same messaging path, when authenticating with the same user id by
just altering the virtual host (or application) you are connecting to.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
