Bruce, Thank you for your quick response. We have implemented a JAAS Loginmodule that authenticate users against a security repository such as LDAP, however, the only time that I was prompted for user name and password was when the SA used an HTTP endpoint that has authmethod set to basic. It still not clear to me how I could put authorization requirements to service assemblies (any SA) to check weather or not the requested operation is allowed or not.
bsnyder wrote: > > On Mon, May 19, 2008 at 12:38 PM, javadevel <[EMAIL PROTECTED]> wrote: >> >> We have setup a ServiceMix cluster that includes several deployed >> components >> (Service Assemblies). The out of the box configuration of SMX allows any >> component (Service Assembly) deployed on the cluster (or bus) to easily >> communicate with any other components as the NMR provides location >> transparency. The problem is we would like to make some of the Service >> Assemblies (components) available only to authorized components and not >> make >> the SA's accessible to all the components that are deployed on the >> cluster. >> Is there any way how we can set up some sort of a security filter to >> selected service assemblies to require authentication before allowing >> them >> to interact with other component? I am basically asking for best >> practices >> on how to cleanly implement this solution (if not already available) >> without >> being too intrusive to components. > > It sounds like you may want to look at the JAAS features in ServiceMix: > > http://servicemix.apache.org/security.html > > Bruce > -- > perl -e 'print > unpack("u30","D0G)[EMAIL PROTECTED]&5R\"F)R=6-E+G-N>61E<D\!G;6%I;\"YC;VT*" > );' > > Apache ActiveMQ - http://activemq.org/ > Apache Camel - http://activemq.org/camel/ > Apache ServiceMix - http://servicemix.org/ > Apache Geronimo - http://geronimo.apache.org/ > > Blog: http://bruceblog.org/ > > -- View this message in context: http://www.nabble.com/component-level-security-tp17325267p17329106.html Sent from the ServiceMix - User mailing list archive at Nabble.com.
