activemq-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Les Hazlewood (JIRA)" <>
Subject [jira] [Commented] (AMQ-3621) Integrate Apache Shiro with ActiveMQ as "security solution"
Date Tue, 04 Jun 2013 15:39:20 GMT


Les Hazlewood commented on AMQ-3621:

An update for those following this issue that might not be following the ActiveMQ dev mailing

I made quite a bit of progress over the weekend.  Here is the result of the latest effort:

Change log is here:

It works as follows:

The ShiroPlugin installs 2 BrokerFilters at the moment:

- A SubjectFilter which is responsible for constructing and associating a Subject instance
with Connections.  Downstream filters perform actual security checks.
- An AuthenticationFilter (downstream from the SubjectFilter) that enforces client authentication
as necessary.  It supports system and anonymous connections as well if desired.

I still have to create an AuthorizationFilter (that would be downstream from the AuthenticationFilter)
that would allow access control checks (can you subscribe to a destination or not, etc).

All of this code is tested with 100% class, method and line coverage.

Comments, suggestions and feedback are most welcome.
> Integrate Apache Shiro with ActiveMQ as "security solution"
> -----------------------------------------------------------
>                 Key: AMQ-3621
>                 URL:
>             Project: ActiveMQ
>          Issue Type: Improvement
>            Reporter: Cservenak, Tamas
> Integrate Apache Shiro with ActiveMQ as "security solution".
> This would benefit for ActiveMQ to have support for a vast amount of already existing
solution (Realm implementations) that are out there for Shiro.

This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see:

View raw message