camel-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From conflue...@apache.org
Subject [CONF] Apache Camel > Security
Date Sun, 05 Sep 2010 07:42:00 GMT
<html>
<head>
    <base href="https://cwiki.apache.org/confluence">
            <link rel="stylesheet" href="/confluence/s/1810/9/1/_/styles/combined.css?spaceKey=CAMEL&amp;forWysiwyg=true"
type="text/css">
    </head>
<body style="background: white;" bgcolor="white" class="email-body">
<div id="pageContent">
<div id="notificationFormat">
<div class="wiki-content">
<div class="email">
    <h2><a href="https://cwiki.apache.org/confluence/display/CAMEL/Security">Security</a></h2>
    <h4>Page <b>edited</b> by             <a href="https://cwiki.apache.org/confluence/display/~davsclaus">Claus
Ibsen</a>
    </h4>
        <br/>
                         <h4>Changes (12)</h4>
                                 
    
<div id="page-diffs">
            <table class="diff" cellpadding="0" cellspacing="0">
            <tr><td class="diff-snipped" >...<br></td></tr>
            <tr><td class="diff-unchanged" >* Payload Security - Data Formats
that offer encryption/decryption services at the payload level <br>* Endpoint Security
- Security offered by components that can be utilized by endpointUri associated with the component
     <br></td></tr>
            <tr><td class="diff-added-lines" style="background-color: #dfd;">*
Configuration Security - Security offered by encrypting sensitive information from configuration
files <br></td></tr>
            <tr><td class="diff-unchanged" > <br>h3. Route Security - Authentication
and Authorization Services <br></td></tr>
            <tr><td class="diff-snipped" >...<br></td></tr>
            <tr><td class="diff-unchanged" > <br>The components offering
authentication and authorization Services utilizing Route Policies are <br></td></tr>
            <tr><td class="diff-changed-lines" >* <span class="diff-changed-words">[<span
class="diff-deleted-chars"style="color:#999;background-color:#fdd;text-decoration:line-through;">CAMEL:</span>Shiro</span>
Security] <br></td></tr>
            <tr><td class="diff-changed-lines" >* <span class="diff-changed-words">[<span
class="diff-deleted-chars"style="color:#999;background-color:#fdd;text-decoration:line-through;">CAMEL:</span>Spring</span>
Security] <br></td></tr>
            <tr><td class="diff-unchanged" > <br>h3. Payload Security -
Data Formats and Producers/Consumers offering encryption/decryption services <br></td></tr>
            <tr><td class="diff-snipped" >...<br></td></tr>
            <tr><td class="diff-unchanged" > <br>These capabilites are offered
by the following components <br></td></tr>
            <tr><td class="diff-changed-lines" >* <span class="diff-changed-words">[<span
class="diff-deleted-chars"style="color:#999;background-color:#fdd;text-decoration:line-through;">CAMEL:</span>XMLSecurity</span>
DataFormat] <br></td></tr>
            <tr><td class="diff-changed-lines" >* <span class="diff-changed-words">[C<span
class="diff-deleted-chars"style="color:#999;background-color:#fdd;text-decoration:line-through;">AMEL:C</span>rypto]</span>
<br></td></tr>
            <tr><td class="diff-unchanged" > <br>h3. Endpoint Security <br></td></tr>
            <tr><td class="diff-snipped" >...<br></td></tr>
            <tr><td class="diff-unchanged" >Some such components are <br>
<br></td></tr>
            <tr><td class="diff-changed-lines" >* <span class="diff-changed-words">[<span
class="diff-deleted-chars"style="color:#999;background-color:#fdd;text-decoration:line-through;">CAMEL:</span>Jetty]</span>
 - HTTP Basic Authentication support <br></td></tr>
            <tr><td class="diff-changed-lines" >* <span class="diff-changed-words">[C<span
class="diff-deleted-chars"style="color:#999;background-color:#fdd;text-decoration:line-through;">AMEL:C</span>XF]</span>
   - HTTP Basic Authentication &amp; WS-Security support using the CXF Bus driven interceptor
chain <br></td></tr>
            <tr><td class="diff-changed-lines" >* <span class="diff-changed-words">[<span
class="diff-deleted-chars"style="color:#999;background-color:#fdd;text-decoration:line-through;">CAMEL:</span>Netty]</span>
 - SSL support <br></td></tr>
            <tr><td class="diff-changed-lines" >* <span class="diff-deleted-words"style="color:#999;background-color:#fdd;text-decoration:line-through;">[CAMEL:MINA]</span>
<span class="diff-added-words"style="background-color: #dfd;">[MINA]</span>  
- SSL support <br></td></tr>
            <tr><td class="diff-changed-lines" >* <span class="diff-changed-words">[C<span
class="diff-deleted-chars"style="color:#999;background-color:#fdd;text-decoration:line-through;">AMEL:C</span>ometd]</span>
- SSL support <br></td></tr>
            <tr><td class="diff-changed-lines" >* <span class="diff-changed-words">[<span
class="diff-deleted-chars"style="color:#999;background-color:#fdd;text-decoration:line-through;">CAMEL:</span>JMS]</span>
   - JAAS and SSL based security for client &lt;--&gt; broker communication <br></td></tr>
            <tr><td class="diff-added-lines" style="background-color: #dfd;">
<br>h3. Configuration Security <br>*Available as of Camel 2.5* <br> <br>Camel
offers the [Properties] component to externalize configuration values to properties files.
Those values could contain sensitive information such as usernames and passwords. Those values
can be encrypted and automatic decrypted by Camel.  <br> <br>* [Jasypt] <br></td></tr>
        </table>
</div>                            <h4>Full Content</h4>
                    <div class="notificationGreySide">
        <h2><a name="Security-Security"></a>Security </h2>

<p>Camel offers several forms &amp; levels of security capabilities that can be
utilized on camel routes. These various forms of security may be used in conjunction with
each other or separately.</p>

<p>The broad categories offered are</p>

<ul>
	<li>Route Security - Authentication and Authorization services to proceed on a route
or route segment</li>
	<li>Payload Security - Data Formats that offer encryption/decryption services at the
payload level</li>
	<li>Endpoint Security - Security offered by components that can be utilized by endpointUri
associated with the component</li>
	<li>Configuration Security - Security offered by encrypting sensitive information from
configuration files</li>
</ul>


<h3><a name="Security-RouteSecurityAuthenticationandAuthorizationServices"></a>Route
Security - Authentication and Authorization Services</h3>

<p>Camel offers Policy driven security capabilities that may be wired into routes or
route segments. A Policy in Camel utilizes a strategy pattern for applying interceptors on
Camel Processors. It offering the ability to apply cross-cutting concerns (for example. security,
transactions etc) on sections/segments of a camel route.</p>

<p>The components offering authentication and authorization Services utilizing Route
Policies are</p>
<ul>
	<li><a href="/confluence/display/CAMEL/Shiro+Security" title="Shiro Security">Shiro
Security</a></li>
	<li><a href="/confluence/display/CAMEL/Spring+Security" title="Spring Security">Spring
Security</a></li>
</ul>


<h3><a name="Security-PayloadSecurityDataFormatsandProducers%2FConsumersofferingencryption%2Fdecryptionservices"></a>Payload
Security - Data Formats and Producers/Consumers offering encryption/decryption services</h3>

<p>Camel offers encryption/decryption services to secure payloads or selectively apply
encryption/decryption capabilities on portions/sections of a payload. </p>

<p>These capabilites are offered by the following components</p>
<ul>
	<li><a href="/confluence/display/CAMEL/XMLSecurity+DataFormat" title="XMLSecurity
DataFormat">XMLSecurity DataFormat</a></li>
	<li><a href="/confluence/display/CAMEL/Crypto" title="Crypto">Crypto</a></li>
</ul>


<h3><a name="Security-EndpointSecurity"></a>Endpoint Security</h3>

<p>Some components in camel offer an ability to secure their endpoints (using interceptors
etc) and therefore ensure that they offer the ability to secure payloads as well as provide
authentication/authorization capabilities at endpoints created using the components.</p>

<p>Some such components are</p>

<ul>
	<li><a href="/confluence/display/CAMEL/Jetty" title="Jetty">Jetty</a> 
- HTTP Basic Authentication support</li>
	<li><a href="/confluence/display/CAMEL/CXF" title="CXF">CXF</a>    - HTTP
Basic Authentication &amp; WS-Security support using the CXF Bus driven interceptor chain</li>
	<li><a href="/confluence/display/CAMEL/Netty" title="Netty">Netty</a> 
- SSL support</li>
	<li><a href="/confluence/display/CAMEL/MINA" title="MINA">MINA</a>   -
SSL support</li>
	<li><a href="/confluence/display/CAMEL/Cometd" title="Cometd">Cometd</a>
- SSL support</li>
	<li><a href="/confluence/display/CAMEL/JMS" title="JMS">JMS</a>    - JAAS
and SSL based security for client &lt;--&gt; broker communication</li>
</ul>


<h3><a name="Security-ConfigurationSecurity"></a>Configuration Security</h3>
<p><b>Available as of Camel 2.5</b></p>

<p>Camel offers the <a href="/confluence/display/CAMEL/Properties" title="Properties">Properties</a>
component to externalize configuration values to properties files. Those values could contain
sensitive information such as usernames and passwords. Those values can be encrypted and automatic
decrypted by Camel. </p>

<ul>
	<li><a href="/confluence/pages/createpage.action?spaceKey=CAMEL&amp;title=Jasypt&amp;linkCreation=true&amp;fromPageId=23333902"
class="createlink">Jasypt</a></li>
</ul>

    </div>
        <div id="commentsSection" class="wiki-content pageSection">
        <div style="float: right;">
            <a href="https://cwiki.apache.org/confluence/users/viewnotifications.action"
class="grey">Change Notification Preferences</a>
        </div>
        <a href="https://cwiki.apache.org/confluence/display/CAMEL/Security">View Online</a>
        |
        <a href="https://cwiki.apache.org/confluence/pages/diffpagesbyversion.action?pageId=23333902&revisedVersion=2&originalVersion=1">View
Changes</a>
                |
        <a href="https://cwiki.apache.org/confluence/display/CAMEL/Security?showComments=true&amp;showCommentArea=true#addcomment">Add
Comment</a>
            </div>
</div>
</div>
</div>
</div>
</body>
</html>

Mime
View raw message