[jboss-user] [JBoss Messaging] - Securing JBoss Messaging and EJB3

Alexander Hartner do-not-reply at jboss.com
Fri Jul 23 01:40:52 EDT 2010

Alexander Hartner [http://community.jboss.org/people/ejb3workshop] replied to the discussion

"Securing JBoss Messaging and EJB3"

To view the discussion, visit: http://community.jboss.org/message/554067#554067

I made some progress and added the mdbuser  / mdbpassword in the jboss.xml file
>         <message-driven>
>             <ejb-name>JobRequestListener</ejb-name>
>             <destination-jndi-name>queue/abc/JobRequests</destination-jndi-name>
>             <mdb-user>jmsuser</mdb-user>
>             <mdb-passwd>password</mdb-passwd>
So now I am able to receive messages in my MDB. However any injected resources also need to be authenticated. This is not very nice as I have to include the password in the deployment descriptor as well as the application itself. I am hoping that there is an elegant way of granting the entire EAR application access to read and write to JMS destination and to be able to specify the user credentials outside the application and reference a security policy.

Thanks for your help.


Reply to this message by going to Community

Start a new discussion in JBoss Messaging at Community

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-user/attachments/20100723/6e43229a/attachment.html 

More information about the jboss-user mailing list