8:54 p.m.
Daniel Spiess [http://community.jboss.org/people/dspiess] created the discussion
"What do you use for JMS security in JBoss?"
To view the discussion, visit: http://community.jboss.org/message/561395#561395
--------------------------------------------------------------
Hi,
How do you secure your messages in JBoss? Is there something built in, or do you have to
implement your own method?
We're looking to make the messages secure in that we know the message came from a
trusted source and wasn't tampered.
Thoughts?
Thanks,
DJ Spiess
--------------------------------------------------------------
Reply to this message by going to Community
[http://community.jboss.org/message/561395#561395]
Start a new discussion in JBoss Messaging at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&...]
5:10 a.m.
New subject: [JBoss Messaging] - Re: What do you use for JMS security in JBoss?
Peter Johnson [http://community.jboss.org/people/peterj] created the discussion
"Re: What do you use for JMS security in JBoss?"
To view the discussion, visit: http://community.jboss.org/message/561467#561467
--------------------------------------------------------------
One way is to define a login module in server/xxx/conf/login-config.xml, and then
reference that login module in server/xxx/deploy/messaging-jboss-beans.xml using the
SecurityDomain property of the SecurityStore bean. Then for each of you destinations
include as SecurityConfig attribute that identifies the roles that have read, write and
create roles. The docs/examples/jms/example-destinations.xml file shows examples of
setting the SecurityConfig roles.
Surprisingly, the docs are silent on this; at least, I could not find a specific section
on securing destinations. Of course, if you are familiar with general access control on
JBoss AS, then the access control for emssaging is very simple since it follows the same
patterns.
I do have another resource that describes securing destinations in detail, but it is not
free. I would be happy to provide the URL if you like.
--------------------------------------------------------------
Reply to this message by going to Community
[http://community.jboss.org/message/561467#561467]
Start a new discussion in JBoss Messaging at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&...]
5:03 a.m.
New subject: [JBoss Messaging] - Re: What do you use for JMS security in JBoss?
Zach Anderson [http://community.jboss.org/people/andersoz] created the discussion
"Re: What do you use for JMS security in JBoss?"
To view the discussion, visit: http://community.jboss.org/message/561654#561654
--------------------------------------------------------------
Would you please provide that URL? Also, if the server is configured to use an LDAP
login module, is there any way to use those credentials on the client that is
sending/receiving from those jms destinations? I would imagine that it would be simpler
to create a separate login module just for the messaging security that uses roles from a
properties file.
--------------------------------------------------------------
Reply to this message by going to Community
[http://community.jboss.org/message/561654#561654]
Start a new discussion in JBoss Messaging at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&...]
10:19 a.m.
New subject: [JBoss Messaging] - Re: What do you use for JMS security in JBoss?
Peter Johnson [http://community.jboss.org/people/peterj] created the discussion
"Re: What do you use for JMS security in JBoss?"
To view the discussion, visit: http://community.jboss.org/message/562015#562015
--------------------------------------------------------------
Chapter 8 of JBoss in Action () http://www.manning.com/jamae http://www.manning.com/jamae)
describes the steps needed to secure messaing. The example in that chapter sets up a
database for login purposes, but you can use you LDAP login module. No matter what type of
login module you use (LDAP, database, properties file), the messaging configuration is the
same.
--------------------------------------------------------------
Reply to this message by going to Community
[http://community.jboss.org/message/562015#562015]
Start a new discussion in JBoss Messaging at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&...]
5:33 a.m.
New subject: [JBoss Messaging] - Re: What do you use for JMS security in JBoss?
Eric Bustad [http://community.jboss.org/people/eric_bustad] created the discussion
"Re: What do you use for JMS security in JBoss?"
To view the discussion, visit: http://community.jboss.org/message/561943#561943
--------------------------------------------------------------
How might this be done when you are using JMS through JBoss ESB? Would this be specified
in jbm-queue-service.xml?
--------------------------------------------------------------
Reply to this message by going to Community
[http://community.jboss.org/message/561943#561943]
Start a new discussion in JBoss Messaging at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&...]
5210
days inactive
5214
days old
4 comments
4 participants
participants (4)
-
Daniel Spiess -
Eric Bustad
-
Peter Johnson
-
Zach Anderson