Red Hat SummitCe contenu n'est pas disponible dans la langue sélectionnée.
8.3.5. Writing an Access Control List
- The user id in the ACL file is of the form <user-id>@<domain>. The Domain is configured via the SASL configuration for the broker, and the domain/realm for qpidd is set using
--realmand default to 'QPID'. - Each line in an ACL file grants or denies specific rights to a user.
- If the last line in an ACL file is
acl deny all all, the ACL uses deny mode, and only those rights that are explicitly allowed are granted:acl allow user@QPID all all acl deny all all
acl allow user@QPID all all acl deny all allCopy to Clipboard Copied! Toggle word wrap Toggle overflow On this server, deny mode is the default.user@QPIDcan perform any action, but nobody else can. - If the last line in an ACL file is
acl allow all all, the ACL uses allow mode, and all rights are granted except those that are explicitly denied.acl deny user@QPID all all acl allow all all
acl deny user@QPID all all acl allow all allCopy to Clipboard Copied! Toggle word wrap Toggle overflow On this server, allow mode is the default. The ACL allows everyone else to perform any action, but deniesuser@QPIDall permissions.
- ACL processing ends when one of the following lines is encountered:
acl allow all all
acl allow all allCopy to Clipboard Copied! Toggle word wrap Toggle overflow acl deny all all
acl deny all allCopy to Clipboard Copied! Toggle word wrap Toggle overflow Any lines after one of these statements will be ignored:acl allow all all acl deny user@QPID all all # This line is ignored !!!
acl allow all all acl deny user@QPID all all # This line is ignored !!!Copy to Clipboard Copied! Toggle word wrap Toggle overflow - ACL syntax allows fine-grained access rights for specific actions:
Copy to Clipboard Copied! Toggle word wrap Toggle overflow - An ACL file can define user groups, and assign permissions to them:
group admin ted@QPID martin@QPID acl allow admin create all acl deny all all
group admin ted@QPID martin@QPID acl allow admin create all acl deny all allCopy to Clipboard Copied! Toggle word wrap Toggle overflow
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}