[
https://issues.apache.org/jira/browse/QPID-2539?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12866126#action_12866126
]
Andrew Kennedy commented on QPID-2539:
--------------------------------------
1. What is the purpose of CONNECT ?
ADK: An ACL that allows access to a virtual host, but no more. Only CONNECT
VIRTUALHOST makes sense for this operation.
2. What is the purpose of ADMIN ?
2. What is the purpose of LOG, CONFIG and ACL ?
I think CONFIG is probably a good addition, but I'd like to understand
what exactly you had in mind.
3. Also how is LOG different from "allow-log" and "deny-log" in the current
format ?
ADK: An ACL that allows JMX (or QMF) administration to take place, where the
object being administered is either the BROKER (i.e. to retrieve queue names,
statistics, read-only attributes and so on) or CONFIG, LOG or USER. These three
are only modifiable using the admin interface, wheras the other ACL entries
apply (like CREATE QUEUE) no matter how the queue is created. CONFIG grants
permission to reload the security config, or edit ACL lines, LOG allows
changing the log4j levels and USER grants the ability to add/delete users.
> Update ACL file syntax to be clearer and add extra operations
> -------------------------------------------------------------
>
> Key: QPID-2539
> URL: https://issues.apache.org/jira/browse/QPID-2539
> Project: Qpid
> Issue Type: Sub-task
> Components: Java Broker
> Reporter: Andrew Kennedy
> Fix For: 0.7
>
>
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
---------------------------------------------------------------------
Apache Qpid - AMQP Messaging Implementation
Project: http://qpid.apache.org
Use/Interact: mailto:[email protected]
