如何在activemq中限制用户?

【问题标题】:How to restrict users in activemq?如何在activemq中限制用户?
【发布时间】:2014-02-05 09:15:10
【问题描述】:

我是 activemq 的新手。我已经下载了最新的 activemq 5.8 并运行了服务器。我已经创建了队列并使用以下代码发送示例消息:

// URL of the JMS server. DEFAULT_BROKER_URL will just mean
    // that JMS server is on localhost
    private static String url = ActiveMQConnection.DEFAULT_BROKER_URL;

    // Name of the queue we will be sending messages to
    private static String subject = "TESTQUEUE";

    public static void main(String[] args) throws JMSException {
        // Getting JMS connection from the server and starting it
        ConnectionFactory connectionFactory =
            new ActiveMQConnectionFactory(url);
        Connection connection = connectionFactory.createConnection();
        connection.start();

        // JMS messages are sent and received using a Session. We will
        // create here a non-transactional session object. If you want
        // to use transactions you should set the first parameter to 'true'
        Session session = connection.createSession(false,
            Session.AUTO_ACKNOWLEDGE);

        // Destination represents here our queue 'TESTQUEUE' on the
        // JMS server. You don't have to do anything special on the
        // server to create it, it will be created automatically.
        Destination destination = session.createQueue(subject);

        // MessageProducer is used for sending messages (as opposed
        // to MessageConsumer which is used for receiving them)
        MessageProducer producer = session.createProducer(destination);

        // We will send a small text message saying 'Hello' in Japanese
        TextMessage message = session.createTextMessage("こんにちは");

        // Here we are sending the message!
        producer.send(message);
        System.out.println("Sent message '" + message.getText() + "'");

        connection.close();
    }

我已经运行了上面的代码并成功创建了队列。现在我想在activemq服务器中限制用户访问。我改变了createConnnection方法如下

Connection connection = connectionFactory.createConnection("test","test");

现在,如果我运行更改的代码消息发送到队列成功。但是即使连接建立,activemq 中也不存在测试用户。如何限制此用户?

<authorizationPlugin>
    <map>
      <authorizationMap>
        <authorizationEntries>
          <authorizationEntry queue=">" read="admins" write="admins" admin="admins" />
          <authorizationEntry queue="USERS.>" read="users" write="users" admin="users" />
          <authorizationEntry queue="GUEST.>" read="guests" write="guests,users" admin="guests,users" />

          <authorizationEntry queue="TEST.Q" read="guests" write="guests" />

          <authorizationEntry topic=">" read="admins" write="admins" admin="admins" />
          <authorizationEntry topic="USERS.>" read="users" write="users" admin="users" />
          <authorizationEntry topic="GUEST.>" read="guests" write="guests,users" admin="guests,users" />

          <authorizationEntry topic="ActiveMQ.Advisory.>" read="guests,users" write="guests,users" admin="guests,users"/>
        </authorizationEntries>
      </authorizationMap>
    </map>
  </authorizationPlugin>
</plugins>

在上面的文件中是activemq.xml。现在我只想访问队列只有某些用户。

actvimq中如何限制用户?我需要在 activemq.xml 文件上方进行什么更改?

【问题讨论】:

    标签: java activemq


    【解决方案1】:

    查看 ActiveMQ 文档:http://activemq.apache.org/security.html

    在activemq.xml中:

    在“目的地”部分定义您要创建的队列。 您可以通过在“用户”部分定义组来控制权限。 在“authorizationEntries”部分,您可以定义允许哪些组读取、写入和管理队列。

    activemq.xml的Framgent: 

    <destinations>				
			<queue physicalName="DEMOQUEUE01" />
			<queue physicalName="DEMOQUEUE02" />
			<queue physicalName="DEMOQUEUE03" />
</destinations>	

<plugins>		
			<simpleAuthenticationPlugin anonymousAccessAllowed="false">
			  <users>	
				<authenticationUser username="admin"      	password="admin"    			groups="usuarios,users,admins"/>
				<authenticationUser username="system"     	password="manager"    			groups="usuarios,users,admins"/>	
	
				<authenticationUser username="youruser1" password="password123" groups="GROUP01,DEMOGROUP"/>	
			    <authenticationUser username="youruser2" password="password456" groups="GROUP01,OTHERGROUP"/>	
			  </users>
			</simpleAuthenticationPlugin>
			<authorizationPlugin>
			  <map>
				<authorizationMap>
				  <authorizationEntries>				
					<authorizationEntry queue = "DEMOQUEUE01" read="admins,GROUP01" write="admins,GROUP01" admin="admins"/>
					<authorizationEntry queue = "DEMOQUEUE02"  read="admins,DEMOGROUP" write="admins"  admin="admins"/>
					<authorizationEntry queue = "DEMOQUEUE03"  read="admins,OTHERGROUP" write="admins,OTHERGROUP"  admin="admins"/>
					
					<authorizationEntry queue=">" read="admins" write="admins" admin="admins" />
					<authorizationEntry topic=">" read="usuarios,admins,GROUP01" write="usuarios,admins,GROUP01" admin="usuarios" />
				  </authorizationEntries>
				</authorizationMap>
			  </map>
			</authorizationPlugin>
</plugins>

    【讨论】:

    • 嗨。什么队列?什么语言?什么问题?
    猜你喜欢
    • 1970-01-01
    • 1970-01-01
    • 1970-01-01
    • 1970-01-01
    • 1970-01-01
    • 1970-01-01
    • 1970-01-01
    • 1970-01-01
    • 1970-01-01
    相关资源
    最近更新 更多
    热门标签
    Java Python linux javascript Mysql C# Docker 算法 前端 SpringBoot Redis Vue spring 设计模式 .net core .net kubernetes c++ 数据库 数据结构 大数据 js 机器学习 微服务 Android Go 程序员 面试 JVM ASP.net core 云原生 人工智能 后端 PHP git CSS golang k8s Nginx Django mybatis 深度学习 多线程 React 架构 devops 爬虫 云计算 Spring Boot LeetCode