Return-Path: Delivered-To: apmail-activemq-users-archive@www.apache.org Received: (qmail 53714 invoked from network); 18 Mar 2009 08:47:37 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 18 Mar 2009 08:47:37 -0000 Received: (qmail 59427 invoked by uid 500); 18 Mar 2009 08:47:35 -0000 Delivered-To: apmail-activemq-users-archive@activemq.apache.org Received: (qmail 59406 invoked by uid 500); 18 Mar 2009 08:47:35 -0000 Mailing-List: contact users-help@activemq.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@activemq.apache.org Delivered-To: mailing list users@activemq.apache.org Received: (qmail 59395 invoked by uid 99); 18 Mar 2009 08:47:35 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 18 Mar 2009 01:47:35 -0700 X-ASF-Spam-Status: No, hits=2.6 required=10.0 tests=DNS_FROM_OPENWHOIS,SPF_HELO_PASS,SPF_PASS,WHOIS_MYPRIVREG X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of lists@nabble.com designates 216.139.236.158 as permitted sender) Received: from [216.139.236.158] (HELO kuber.nabble.com) (216.139.236.158) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 18 Mar 2009 08:47:26 +0000 Received: from isper.nabble.com ([192.168.236.156]) by kuber.nabble.com with esmtp (Exim 4.63) (envelope-from ) id 1LjrQX-0001vX-Mt for users@activemq.apache.org; Wed, 18 Mar 2009 01:47:05 -0700 Message-ID: <22574768.post@talk.nabble.com> Date: Wed, 18 Mar 2009 01:47:05 -0700 (PDT) From: huntc To: users@activemq.apache.org Subject: Re: ActiveMQ JNDI support only for testing? In-Reply-To: <22562840.post@talk.nabble.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Nabble-From: huntc@mac.com References: <21925743.post@talk.nabble.com> <22530093.post@talk.nabble.com> <22556493.post@talk.nabble.com> <22562840.post@talk.nabble.com> X-Virus-Checked: Checked by ClamAV on apache.org janylj wrote: > > I was trying to have a centralized repository of destinations and > ConnectionFactory. I could use a uniform namespace for destination to > avoid conflicting. However, I don't want to allow users creating > destination or ConnectionFactory on the fly. I would like them accessing > the broker only through administrative objects. > I believe you are going about this the wrong way. What you really want is topic/queue authorisation i.e. only let certain authenticated users do certain things within the broker. You might find my blog entry on securing ActiveMQ useful. Authorisation is covered. http://christopherhunt-software.blogspot.com/2009/03/mutual-ssl-authentication-and-ldap.html -- View this message in context: http://www.nabble.com/ActiveMQ-JNDI-support-only-for-testing--tp21925743p22574768.html Sent from the ActiveMQ - User mailing list archive at Nabble.com.