ActiveMQ的授权 [英] ActiveMQ authorization

问题描述

如果我想要实现在Apache ActiveMQ的JAAS授权，我必须使用插件的activemq.xml中的配置文件？

If I want to implement JAAS authorization on Apache ActiveMQ, do I have to use the plug-in in the activemq.xml configuration file?

这方法是真的不好，因为如果我要改变授权，我必须改变activemq.xml中的文件和重新启动为了服务器的工作。

This way is really NOT good because if I want to change authorization, I have to change the activemq.xml file and restart the server in order to work.

有没有什么办法可以改变其他属性文件，而不是activemq.xml中的文件使用像JAAS认证？或者可以自定义我自己的授权插件？

Is there any way I can use like JAAS authentication by changing other properties file rather than the activemq.xml file? Or can I custom my own authorization plugin?

感谢。

推荐答案

每当我已经设置了ActiveMQ的安全性，我发现它最好使用普通的 AuthorizationPlugin 与通配符这表示目的地覆盖（这就是为什么它是非常方便使用的命名约定的来回队列和主题）。我们的想法是，你定义用户组一把，并授予他们访问这些目的地。

Whenever I have set up ActiveMQ security, I have found it best to use the plain AuthorizationPlugin with wildcards that denote the destinations covered (which is why it's really handy to use naming conventions fro your queues and topics). The idea is that you define a handful of user groups and grant them access to those destinations.

这是一个用户名是由身份验证插件之一处理分配组的角色 - JAAS插件是在LDAP目录外化ActiveMQ的配置超出此信息特别有用。

The role of assigning a group from a username is handled by one of the authentication plugins - the JAAS plugin is particularly useful for externalising this information outside the ActiveMQ config in an LDAP directory.

来自于FuseSource查看 ActiveMQ的安全指南（需要注册）了解更多信息。

Check out the ActiveMQ Security Guide from FuseSource (registration required) for further information.

这篇关于ActiveMQ的授权的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！