Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
1.5.0
-
None
Description
There are cases where router-initiated connections to external processes (using connectors) need to have enforcement of access policy from the external container.
That is, when an outbound connection is created by a connector then there is nothing to prevent that external remote container from opening links to any address like, for instance, $management.
In the normal case policy is applied only to inbound connections. This issue covers the case where policy must be applied to outbound connections.
Like the normal policy case, the connector policy will be applied to incoming link creation requests initiated by the external container. Outbound link creation requests initiated by the router are exempt from policy restrictions.