[
https://issues.apache.org/jira/browse/ARTEMIS-1740?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16435925#comment-16435925
]
ASF subversion and git services commented on ARTEMIS-1740:
----------------------------------------------------------
Commit 1e81361a88a2dd333d7f5c7f926dde515e5b7ac5 in activemq-artemis's branch
refs/heads/master from [~lionel.cons]
[ https://git-wip-us.apache.org/repos/asf?p=activemq-artemis.git;h=1e81361 ]
ARTEMIS-1740: Add support for regex based certificate authentication
> Add support for regex based certificate authentication
> ------------------------------------------------------
>
> Key: ARTEMIS-1740
> URL: https://issues.apache.org/jira/browse/ARTEMIS-1740
> Project: ActiveMQ Artemis
> Issue Type: Improvement
> Reporter: Lionel Cons
> Priority: Major
>
> The current certificate authentication module
> ({{TextFileCertificateLoginModule}}) uses a file mapping user names to DNs.
> In some cases, the list of known DNs can be large and dynamic. This is the
> case for instance when using host certificates.
> Host certificates could be very dynamic (when new virtual machines get
> created) while keeping a fixed structure such as {{CN=hostxyz.acme.org,
> OU=computers, DC=acme, DC=org}}. It is impractical to generate all the
> possible DNs and feed this to Artemis.
> It would be very useful to have regular expression based certificate
> authentication. With the example above, we could have a single line:
> {quote}
> acme.computers=/^CN=\w+\.acme\.org, OU=computers, DC=acme, DC=org$/
> {quote}
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
