qpid-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Keith Wall (JIRA)" <j...@apache.org>
Subject [jira] [Created] (QPID-6907) Add ability to restrict read in ACLs
Date Wed, 25 Nov 2015 08:46:10 GMT
Keith Wall created QPID-6907:

             Summary: Add ability to restrict read in ACLs
                 Key: QPID-6907
                 URL: https://issues.apache.org/jira/browse/QPID-6907
             Project: Qpid
          Issue Type: Improvement
          Components: Java Broker
            Reporter: Keith Wall
             Fix For: Future

Currently the ACL mechanism has no way to restrict what a management user can see.   If the
user can authenticate, then they are entitled to see all the objects beneath Broker.  There
is no way to express user A should have management permission to read below virtual host X.

ACLs do have an ACCESS permission, be this is used to govern connections to virtual hosts
for messaging.

This message was sent by Atlassian JIRA

To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org

View raw message