Interface ActiveMQSecurityManager2
-
- All Superinterfaces:
ActiveMQSecurityManager
public interface ActiveMQSecurityManager2 extends ActiveMQSecurityManager
Used to validate whether a user is authorized to connect to the server and perform certain functions on certain destinations. This is an evolution ofActiveMQSecurityManager
that adds the ability to perform authorization taking the destination address into account.
-
-
Method Summary
All Methods Instance Methods Abstract Methods Modifier and Type Method Description boolean
validateUser(String user, String password, X509Certificate[] certificates)
is this a valid user.boolean
validateUserAndRole(String user, String password, Set<org.apache.activemq.artemis.core.security.Role> roles, org.apache.activemq.artemis.core.security.CheckType checkType, String address, RemotingConnection connection)
Determine whether the given user is valid and whether they have the correct role for the given destination address.-
Methods inherited from interface org.apache.activemq.artemis.spi.core.security.ActiveMQSecurityManager
getDomain, getUserFromSubject, init, validateUser, validateUserAndRole
-
-
-
-
Method Detail
-
validateUser
boolean validateUser(String user, String password, X509Certificate[] certificates)
is this a valid user. This method is called instead ofActiveMQSecurityManager.validateUser(String, String)
.- Parameters:
user
- the userpassword
- the users password- Returns:
- true if a valid user
-
validateUserAndRole
boolean validateUserAndRole(String user, String password, Set<org.apache.activemq.artemis.core.security.Role> roles, org.apache.activemq.artemis.core.security.CheckType checkType, String address, RemotingConnection connection)
Determine whether the given user is valid and whether they have the correct role for the given destination address. This method is called instead ofActiveMQSecurityManager.validateUserAndRole(String, String, Set, CheckType)
.- Parameters:
user
- the userpassword
- the user's passwordroles
- the user's rolescheckType
- which permission to validateaddress
- the address for which to perform authorizationconnection
- the user's connection- Returns:
- true if the user is valid and they have the correct roles for the given destination address
-
-