I'm using the Qpid C++ broker, version 1.37.0. I'm authenticating to the broker using certificates. In the service listening for messages, I was hoping to use the user field from the message to check if the user is authorized to take the action specified.
However, it looks like the user field is not being set. The documentation describes how the user is mangled from the certificate DN, etc. - is that only accessible inside the broker read/wire permissions for the exchange? The use case I'm trying to solve is that the permissions are defined granularly inside Active Directory. Putting the authorization logic inside the service is the easiest way to integrate that - also, I need to log which user requested the action. Is there any way to make this work? My fallback plan is to sign the messages with the certificate, but this will add a lot of overheard to each message. -- Sent from: http://qpid.2158936.n2.nabble.com/Apache-Qpid-users-f2158936.html --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
