Uploaded image for project: 'ActiveMQ Classic'
  1. ActiveMQ Classic
  2. AMQ-9472

Wildcard publisher auto-creates wildcard topic and breaks authorization

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Not A Problem
    • None
    • None
    • Broker
    • None

    Description

      Hi,

      after publishing a message to wildcard topic, a wildcard topic is auto-created and interacts poorly with authorization rules.

      Suppose that authorization map contains the following entries:
      <authorizationEntry read="admin" write="admin" admin="admin" topic=">" />
      <authorizationEntry read="user" topic="A.B" />

      Admin creates "A.B" topic and publishes a message to "A.>" causing auto-creation of "A.>" topic.

      User attempts to consume "A.B" topic, but receives "User user is not authorized to read from: topic://A.>" error.

      I asked on user mailing list if wildcard publishing is supposed to work at all, as I could not find any documentation about that. Unfortunately I did not receive any response, so I have to assume that it does.

      Attachments

        Issue Links

          Activity

            People

              jbonofre Jean-Baptiste Onofré
              thezbyg Albertas Vyšniauskas
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 1h 40m
                  1h 40m