I recommend signing the message before handing it off for send. You will need to decide on where to place the signature and if/where you will place the certificate.
Steve Huston > -----Original Message----- > From: Ryan Yeats <ryan.ye...@connexta.com> > Sent: Thursday, September 13, 2018 12:33 PM > To: users@qpid.apache.org > Subject: Signing AMQP messages > > Hi, > I want to sign and receive signed messages so that I can authenticate who > they originally came from even when they are picked up and resent across > multiple brokers. I didn’t see any built-in way to sign messages in the > client > though. I was thinking I would just add a signature to the message footer > myself. I can override onSend(long producerTtl) in the > AmqpJmsMessageFacade and call encodeMessage().array() to get the > message bytes to create a signature, however the methods to add to the > footer are package-private so it doesn’t look like I have any place to put the > signature. What is the correct way to sign an amqp message? > > Thanks!
