今天首次体验了一下ServiceMix3.2.2,但感觉默认设置时,MQ不够安全,因为所有的机器都可以访问该MQ;
于是我打算通过JAAS配置下MQ,如:
<amq:jaasAuthenticationPlugin configuration="servicemix-domain" />
<amq:authorizationPlugin>
<amq:map>
<amq:authorizationMap>
<amq:authorizationEntries>
<amq:authorizationEntry queue=">" read="admin" write="admin" admin="admin" />
<amq:authorizationEntry topic=">" read="admin" write="admin" admin="admin" />
</amq:authorizationEntries>
</amq:authorizationMap>
</amq:map>
</amq:authorizationPlugin>
在login.properties加入
servicemix-domain {
org.apache.servicemix.jbi.security.login.PropertiesLoginModule
sufficient debug=true
org.apache.servicemix.security.properties.user="users-passwords.properties"
org.apache.servicemix.security.properties.group="groups.properties";
org.apache.servicemix.jbi.security.login.CertificatesLoginModule
sufficient
org.apache.servicemix.security.certificates.user="users-credentials.properties"
org.apache.servicemix.security.certificates.group="groups.properties";
};
这时问题出来了,SeriveMix启动时,自身却连不上MQ了,java.lang.SecurityException: User smx is not authorized to create: topic://ActiveMQ.Advisory.Connection
难道SeriveMix的MQ配置文件不能进行安全配置
于是我打算通过JAAS配置下MQ,如:
<amq:jaasAuthenticationPlugin configuration="servicemix-domain" />
<amq:authorizationPlugin>
<amq:map>
<amq:authorizationMap>
<amq:authorizationEntries>
<amq:authorizationEntry queue=">" read="admin" write="admin" admin="admin" />
<amq:authorizationEntry topic=">" read="admin" write="admin" admin="admin" />
</amq:authorizationEntries>
</amq:authorizationMap>
</amq:map>
</amq:authorizationPlugin>
在login.properties加入
servicemix-domain {
org.apache.servicemix.jbi.security.login.PropertiesLoginModule
sufficient debug=true
org.apache.servicemix.security.properties.user="users-passwords.properties"
org.apache.servicemix.security.properties.group="groups.properties";
org.apache.servicemix.jbi.security.login.CertificatesLoginModule
sufficient
org.apache.servicemix.security.certificates.user="users-credentials.properties"
org.apache.servicemix.security.certificates.group="groups.properties";
};
这时问题出来了,SeriveMix启动时,自身却连不上MQ了,java.lang.SecurityException: User smx is not authorized to create: topic://ActiveMQ.Advisory.Connection
难道SeriveMix的MQ配置文件不能进行安全配置