Uploaded image for project: 'Qpid'
  1. Qpid
  2. QPID-3918

Add management acl-query test methods to C++ broker ACL plugin

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 0.14
    • Fix Version/s: 0.17
    • Component/s: C++ Broker
    • Labels:
      None

      Description

      In its current form the ACL module is not testable in a customer deployment. The ACL module loads the ACL file and from then on only real-world activity triggers allow and deny decisions.

      This feature proposal adds two management methods that are directly tied to the ACL decision Lookup functions. Using them a customer may start a dummy broker process that uses his actual (1) ACL rule file. Then using a management application the customer may fire off a set of lookups against his rule file to see if the ACL rules deliver the intended results.

      This feature could also be used to augment the self tests. It is very hard to stage enough driver code to trigger some of the ACL queries. Using the proposed methods then the self test can launch any ACL query directly.

      (1) As usual the ACL file must be bent enough to allow 'anonymous' to have access to the management methods

        Attachments

        1. acl-test-01.log
          52 kB
          Chuck Rolke
        2. acl-test-01.py
          6 kB
          Chuck Rolke
        3. acl-test-01-brokerlog.txt
          0.5 kB
          Chuck Rolke
        4. acl-test-01-rules.acl
          2 kB
          Chuck Rolke

          Activity

            People

            • Assignee:
              chug Chuck Rolke
              Reporter:
              chug Chuck Rolke
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: