Guillaume, I see three kinds of security :
- Secure data transfer using between endpoints. This goal can be achieved using SSL encyption but How can we achieve this though VM. I'm not sure this is possible and probably we have to use ssl:// of activemq and not vm:// - Secure incoming stream*. Stream can be data received from a file, FTP, HTTP transfer or a queue. In this case, it should be interestin to have an authentication processor to allow by example to intercept the stream and to verify if the user sending the data is authorized to provide the data stream. By example, it could interesting to use something like from(file://xxxxxx).authenticate(mode). Authenticate will authenticate the user using the mode defined. Mode could be basic, LDAP, ... whatever you want. Obviously, the user credentials should be provided though dedicated fields of the file or message properties - Authorize client to use services onto the bus. This point is probably out of scope for Camel but it should be interesting also to have a processor allowing to verify that the client can use or not a service (like ftom().authorize()). You can argue that we can achieve this by intercepting the data transfer and check all the security stuff outside of camel or servicemix using Tivoli or equivalent solutions. Regards, Charles gnodet wrote: > > What kind of security are you looking for ? Securing services access ? How > would the authentication be done and what would be used to convey these > authentication data ? > > On Tue, Apr 8, 2008 at 5:43 PM, cmoulliard <[EMAIL PROTECTED]> wrote: > >> >> Hi, >> >> I would like to know if security support is planned in future release of >> Camel like authentication/authorisation through JAAS or Acegi frameworks >> ? >> >> Regards, >> >> Charles >> -- >> View this message in context: >> http://www.nabble.com/Is-security-support-planned-%28JAAS%2C-ACEGI%2C-...%29-tp16561887s22882p16561887.html >> Sent from the Camel - Users mailing list archive at Nabble.com. >> >> > > > -- > Cheers, > Guillaume Nodet > ------------------------ > Blog: http://gnodet.blogspot.com/ > > -- View this message in context: http://www.nabble.com/Is-security-support-planned-%28JAAS%2C-ACEGI%2C-...%29-tp16561887s22882p16581718.html Sent from the Camel - Users mailing list archive at Nabble.com.
