qpid-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Keith Wall (JIRA)" <j...@apache.org>
Subject [jira] [Created] (QPID-6907) Add ability to restrict read in ACLs
Date Wed, 25 Nov 2015 08:46:10 GMT
Keith Wall created QPID-6907:
--------------------------------

             Summary: Add ability to restrict read in ACLs
                 Key: QPID-6907
                 URL: https://issues.apache.org/jira/browse/QPID-6907
             Project: Qpid
          Issue Type: Improvement
          Components: Java Broker
            Reporter: Keith Wall
             Fix For: Future


Currently the ACL mechanism has no way to restrict what a management user can see.   If the
user can authenticate, then they are entitled to see all the objects beneath Broker.  There
is no way to express user A should have management permission to read below virtual host X.

ACLs do have an ACCESS permission, be this is used to govern connections to virtual hosts
for messaging.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org


Mime
View raw message