Return-Path: Delivered-To: apmail-activemq-users-archive@www.apache.org Received: (qmail 75280 invoked from network); 11 Jul 2008 14:58:55 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 11 Jul 2008 14:58:55 -0000 Received: (qmail 55790 invoked by uid 500); 11 Jul 2008 14:58:55 -0000 Delivered-To: apmail-activemq-users-archive@activemq.apache.org Received: (qmail 55763 invoked by uid 500); 11 Jul 2008 14:58:55 -0000 Mailing-List: contact users-help@activemq.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@activemq.apache.org Delivered-To: mailing list users@activemq.apache.org Received: (qmail 55750 invoked by uid 99); 11 Jul 2008 14:58:55 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 11 Jul 2008 07:58:55 -0700 X-ASF-Spam-Status: No, hits=2.0 required=10.0 tests=HTML_MESSAGE,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of pjulien@gmail.com designates 209.85.200.175 as permitted sender) Received: from [209.85.200.175] (HELO wf-out-1314.google.com) (209.85.200.175) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 11 Jul 2008 14:58:01 +0000 Received: by wf-out-1314.google.com with SMTP id 26so3530565wfd.26 for ; Fri, 11 Jul 2008 07:58:24 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:mime-version:content-type; bh=u/vq9usHZpbOFQ+5jl3ecHRPlly3KLPZu1USRJ4gdPY=; b=OzUSctMzExO9oHrCZvJXVdDV7MLotwmF0qnvmHHvxh840dsV1zcOJD59KzPB0W+GJ7 kdIFmmGE8cdtHE8LpzvMu9rxBvyG1F1wQpy8pnm4Bb6LyB+PeIHjb7SGCRc0/t6PrUe2 7HAHq5dDqDAuD8HjfN/08YqFe4mnarjb83KBY= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:mime-version:content-type; b=s3N3nYb2xY+bAoGdjebxV7Bpfwn3hBTgMgnBZwThzL/8jTpgHun/Pz6wQqh6MP9zIP Smxe0u9KAx1sc4dma2X+ITmvRbMTWRBTnYw0iFHo1urrOR07pXLZ/qsVqHpyWjk/2Zv1 9dozVkY627GdBT0KzYaZoEKr8ioiqyeWRxXls= Received: by 10.142.194.1 with SMTP id r1mr3149632wff.306.1215788303385; Fri, 11 Jul 2008 07:58:23 -0700 (PDT) Received: by 10.141.53.12 with HTTP; Fri, 11 Jul 2008 07:58:23 -0700 (PDT) Message-ID: <9bdf03d20807110758q62608e12rd52f7e3810e438@mail.gmail.com> Date: Fri, 11 Jul 2008 10:58:23 -0400 From: "Patrick Julien" To: users@activemq.apache.org Subject: ActiveMQ and Glassfish Realm MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_33420_26482737.1215788303423" X-Virus-Checked: Checked by ClamAV on apache.org ------=_Part_33420_26482737.1215788303423 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline I have read the security page found at http://activemq.apache.org/security.html but I am somewhat confused by the information found there. 1. If I wanted ActiveMQ to work with a Glassfish realm, Glassfish does indeed use JAAS, would I need to code my own plugin based on BrokerPlugin? Or would it be possible to configure the current JAAS plugin to work with the glassfish realm? Note here that I am not looking to replace the OpenMQ instance found inside Glassfish itself, ActiveMQ would run standalone outside any container. 2. If I do need to make my own plugin based on BrokerPlugin, what jars are actually needed to accomplish this? 3. Say this turns out to be too complicated to bridge the two together. How sensitive would ActiveMQ be to having the "users.properties" and "groups.properties" files being refreshed periodically from realm data? 4. Is it possible to hash the passwords found in user.properties? 5. ActiveMQ supports many transports but it's my understanding that not all of them support authorization. Is there an exaustive list somewhere of which transports support authorization and which do not? thank you, -- http://www.spectrumdt.com http://codepimps.org ------=_Part_33420_26482737.1215788303423--