当前位置: 首页 > ActiveMQ in Action 读书笔记 > 正文

6.5 ActiveMQ 安全小结

 6.5 ActiveMQ 安全小结

In this chapter, the ActiveMQ broker was secured from non-authenticated and nonauthorizedaccess. For the most simple purposes, you can use the ActiveMQ simpleauthentication plug-in, allowing you to define security credentials directly into theconfiguration file. The ActiveMQ JAAS plug-ins provide the ability to utilize the standardizedJava login modules via simple configuration, allowing you to authenticateusers from various sources, such as LDAP, properties files, and so on. Additionally, customJAAS login modules can be created for use with other authentication or authorizationschemes such as Kerberos, NTLM, NIS, and so forth.

 6.5 Summary

本章中,ActiveMQ代理使用了安全机制以避免对未认证实体对ActiveMQ代理进行未授权访问.大多数情况下,你可以使用ActiveMQ的简单认证插件,该插件允许直接在配置文件中定义安全凭证.使用JAAS插件通过简单的配置就可以已用标准的Java登陆模块对来自各种地方的用户进行认证,包含LDAP,属性文件等等.另外,也可以创建并使用采用了诸如Kerberos, NTLM, NIS等认证授权策略的自定义JAAS登陆模块.

Operation-level authorization was also demonstrated for more fine-grained controlover destinations. Next we demonstrated message-level authorization by creating a custompolicy to control consumption of a given message. Then we demonstrated theActiveMQ plug-in mechanism through the customized IP-based authentication example.Finally, we demonstrated how to configure the broker for certificate-based security.ActiveMQ provides some powerful security mechanisms, as seen in this chapter.Hopefully the process for utilizing these solutions is more clear after walking throughthe examples.

 为进行更细粒度的访问控制,本周还介绍了操作级别的授权.接着,我们介绍了消息基本的授权–通过创建一个自定义的策略来控制对特定消息的消费.然后,我们通过一个基于客户端IP地址验证的例子介绍了ActiveMQ的插件机制.最后,我们介绍了如何配置基于证书安全机制.通过本章内容,我们可以看到ActiveMQ提供了很多功能强大的安全方面的解决方案,希望了解完上面介绍的例子后,你能够清楚的知道使用这些的具体流程.

With this chapter, we’ve finished the first part of the book that explained ActiveMQbasics and various concepts regarding configuring the broker. In the following part ofthe book, we’ll concentrate more on how to write applications that utilize ActiveMQ. Inparticular, the following chapter focuses on topics such as embedding ActiveMQ in yourJava applications and using the Spring framework to write JMS-oriented applications.

 到本章为止,我们已经完成本书的第一部分,介绍了ActiveMQ的基础知识和各种基本概念包括代理的配置.本书接下来的内容将集中介绍如何利用ActiveMQ编写应用程序.特别是接下来的章节,我们将介绍一些如何将ActiveMQ嵌入到应用程序中以及如何利用Spring框架编写面向消息的应用程序.

打个赏呗

   微信打赏  支付宝打赏


本文固定链接: https://www.jack-yin.com/coding/translation/activemq-in-action/1536.html | 边城网事

该日志由 边城网事 于2013年10月30日发表在 ActiveMQ in Action 读书笔记 分类下, 你可以发表评论,并在保留原文地址及作者的情况下引用到你的网站或博客。
原创文章转载请注明: 6.5 ActiveMQ 安全小结 | 边城网事

6.5 ActiveMQ 安全小结 暂无评论

发表评论

快捷键:Ctrl+Enter