Uploaded image for project: 'Qpid Dispatch'
  1. Qpid Dispatch
  2. DISPATCH-1288

Optionally enforce access policy on connections established by the router

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 1.5.0
    • Fix Version/s: 1.6.0
    • Component/s: Policy Engine
    • Labels:
      None

      Description

      There are cases where router-initiated connections to external processes (using connectors) need to have enforcement of access policy from the external container.

      That is, when an outbound connection is created by a connector then there is nothing to prevent that external remote container from opening links to any address like, for instance, $management.

      In the normal case policy is applied only to inbound connections. This issue covers the case where policy must be applied to outbound connections.

      Like the normal policy case, the connector policy will be applied to incoming link creation requests initiated by the external container. Outbound link creation requests initiated by the router are exempt from policy restrictions.

       

        Attachments

        1. DISPATCH-1288.txt
          2 kB
          Chuck Rolke

          Activity

            People

            • Assignee:
              chug Chuck Rolke
              Reporter:
              chug Chuck Rolke
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: