Return-Path: Delivered-To: apmail-geronimo-activemq-dev-archive@www.apache.org Received: (qmail 3894 invoked from network); 5 Sep 2006 23:06:54 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 5 Sep 2006 23:06:54 -0000 Received: (qmail 80290 invoked by uid 500); 5 Sep 2006 23:06:53 -0000 Delivered-To: apmail-geronimo-activemq-dev-archive@geronimo.apache.org Received: (qmail 80259 invoked by uid 500); 5 Sep 2006 23:06:53 -0000 Mailing-List: contact activemq-dev-help@geronimo.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: activemq-dev@geronimo.apache.org Delivered-To: mailing list activemq-dev@geronimo.apache.org Received: (qmail 80250 invoked by uid 99); 5 Sep 2006 23:06:53 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 05 Sep 2006 16:06:53 -0700 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received: from [209.237.227.198] (HELO brutus.apache.org) (209.237.227.198) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 05 Sep 2006 16:06:52 -0700 Received: from brutus (localhost [127.0.0.1]) by brutus.apache.org (Postfix) with ESMTP id 23417410011 for ; Tue, 5 Sep 2006 23:03:23 +0000 (GMT) Message-ID: <26622.1157497403141.JavaMail.jira@brutus> Date: Tue, 5 Sep 2006 16:03:23 -0700 (PDT) From: "Sepand Mavandadi (JIRA)" To: activemq-dev@geronimo.apache.org Subject: [jira] Created: (AMQ-912) ActiveMQ support for SSL authentication and authorization MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N ActiveMQ support for SSL authentication and authorization --------------------------------------------------------- Key: AMQ-912 URL: https://issues.apache.org/activemq/browse/AMQ-912 Project: ActiveMQ Issue Type: Improvement Components: Test Cases, Transport Reporter: Sepand Mavandadi Attachments: ssl_certifiacte_auth_patch.txt This patch adds new Transports, Brokers, and Plugins needed for authentication and authorization based on SSL certificates. It also adds a few unit tests for the mentioned classes. The new (or heavily modified) SslTransport, SslTransportServer, and SslTransportFactory classes allow for access to the underlying socket's need and want client auth settings. If a certificate is found, it is set as the transportContext of the created connection. The JaasCertificateAuthenticationBroker uses the new CertificateLoginModule to authenticate certificates (this class is abstract to allow for different backends for certificate authentication, a concrete class is TextFileCertificateLoginModule). JaasCertificateAuthenticationBroker also sets the security context's user name to that provided for the certificate by the login module. This allows for authorization using the existing authorization broker. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: https://issues.apache.org/activemq/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira