ACLv2 loading needs to perform variying validation on file.
-----------------------------------------------------------
Key: QPID-1616
URL: https://issues.apache.org/jira/browse/QPID-1616
Project: Qpid
Issue Type: Improvement
Components: Java Broker
Reporter: Martin Ritchie
Priority: Minor
The new ACL file format needs to perform validation on the acl rules. The
validation should be performed depending on the set value:
strict-acl-validation=[none|warn*|error|fatal]
The default setting should be 'warn'
For the validation to be performed the broker must fully restore any persisted
state, i.e. queues.
This will then allow any rules that will not have any effect to be reported at
the specified level.
e.g.
acl allow client publish routingkey=exampleQueue exchange=amq.direct
On validation the following checks would be performed
The If the user 'client' cannot be found in the PrincipalDatabase
There is an exchange called 'amq.direct'
There is a queue bound to 'exampleQueue' on 'amq.direct'
Each of these checks that fail will result in a log statement being generated.
In the case of a fatal logging the full file will be validated before the
broker shutsdown.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
---------------------------------------------------------------------
Apache Qpid - AMQP Messaging Implementation
Project: http://qpid.apache.org
Use/Interact: mailto:[email protected]
