Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-6644

Provide container managed sign on in configuration of pooled-connection-factory

    XMLWordPrintable

Details

    • Bug
    • Status: Open (View Workflow)
    • Major
    • Resolution: Unresolved
    • 10.0.0.Final, 14.0.0.Final, 15.0.0.Final
    • None
    • JMS
    • None

    Description

      Currently it's not possible to configure container managed sign-on for Artemis RA in <pooled-connection-factory> in messaging-activemq subsystem. This will allow to provide authentication information when new connection to Artemis broker is created without specifying username and password when calling connectionFactory.createConnection().

      Such security-domain could look like:

      <security-domain name="CrashRecoveryDomain0">
                          <authentication>
                              <login-module code="ConfiguredIdentity" flag="required">
                                  <module-option name="principal" value="crash0"/>
                                  <module-option name="password" value="crash0"/>
                                  <module-option name="password-stacking" value="useFirstPass"/>
                                  <module-option name="userName" value="crash0"/>
                              </login-module>
                          </authentication>
                      </security-domain>

      The main benefit is that username and password can be omitted when creating new connection and does not have to be hard cored in EJB/Servlet. This could be used for inbound connections as well. We should allow to specify default-principal-name which would be used for authentication. There is more info about this approach in WebLogic documentatin [1].

      [1] https://docs.oracle.com/cd/E13222_01/wls/docs92/resadapter/security.html

      Attachments

        Issue Links

          Activity

            People

              jmesnil1@redhat.com Jeff Mesnil
              mnovak1@redhat.com Miroslav Novak
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated: