The underlying code uses regular expressions so doing so in management.xml
should also work. That said, I'd recommend using this key instead of what
you originally proposed:
key="queue=(DLQ|ExpireQueue)"
Justin
On Tue, Apr 22, 2025 at 4:39 AM Vilius Šumskas
<[email protected]> wrote:
> Hello,
>
> as an additional measure to lockdown our environments I want some roles to
> be able to create/delete queues and addresses, but limit what they can do
> with system addresses/queues, like DLQ, ExpireQueue,
> activemq.notifications, etc.
>
> Is there a way to define these objects in management.xml using regular
> expressions? I went through
> https://activemq.apache.org/components/artemis/documentation/latest/management.html#role-based-authorisation-for-jmx
> but I found only examples with basic wildcard support. Is it possible to
> have a match for <match domain="org.apache.activemq.artemis"
> key="queue=DLQ|queue=ExpireQueue"> ? Are there any other methods how to
> apply the same management policy to all system queues?
>
> --
> Best Regards,
>
> Vilius Šumskas
> Rivile
> IT manager
>
>
