[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [xmlblaster] Receive Only Client

To: xmlblaster at server.xmlBlaster.org
Subject: Re: [xmlblaster] Receive Only Client
From: Marcel Ruff <mr at marcelruff.info>
Date: Tue, 18 Jul 2006 09:28:58 +0200
In-reply-to: <017101c6a9e4$a737afc0$6464a8c0 at openroadsconsulting.com>
References: <0329C0D74DD1D64F98E6C6B43B5C78100BB222 at frlulms01.iv.local> <44B36C43.2060906 at marcelruff.info> <017101c6a9e4$a737afc0$6464a8c0 at openroadsconsulting.com>
Reply-to: xmlblaster at server.xmlBlaster.org
Sender: owner-xmlblaster at server.xmlBlaster.org
User-agent: Thunderbird 1.5.0.4 (X11/20060516)

Salute,

i would say you have a authorization question: 'Who may do what?'

This should be implemented as a plugin of

  xmlBlaster/src/java/org/xmlBlaster/authentication/plugins/I_Session.java

you could use the existing "htpasswd" plugin and implement your behavior in

xmlBlaster/src/java/org/xmlBlaster/authentication/plugins/htpasswd/Session.java:

------------------------------- public boolean isAuthorized(SessionHolder sessionHolder, DataHolder dataHolder) { if (this.authenticated == false) { log.warning("Authentication of user " + getName() + " failed"); return false; } if (sessionHolder.getSessionInfo().getSessionName().getLoginName().equals("jackTheSubscriber") && (dataHolder.getAction().equals(MethodName.PUBLISH) || dataHolder.getAction().equals(MethodName.PUBLISH_ARR) || dataHolder.getAction().equals(MethodName.PUBLISH_ONEWAY))) { log.warning("Reject publish attempt by " + sessionHolder.getSessionInfo().getSessionName().getAbsoluteName()); return false; }

log.finer("No authorization check for action='" + dataHolder.getAction() + "' on key='" +dataHolder.getKeyOid() + "' is implemented, access generously granted."); return true; } -------------------------------

Prefer to use the current xmlBlaster from svn as I_Session.java has changed the method signature.

If you choose to code it more generic, for example to be configurable in a external configuration file like 'xmlBlaster.htpasswd' we could add your lines of code to the distribution.

regards
Marcel

Matthew Sargent wrote:

Hey all,

I would like to have two classes of subscriber: 1) able to subscribe and
publish and 2) only able to subscribe. What would I need to do in order to
make this happen. I have toyed with the idea of having 2 ports (both SSL)
that can be connected to, and only have on of them allow publishing, or
create various users and re-work some aspect of xmlBlaster to govern this
based on user name and password.

Any better suggestions? Places to look, solutions already in play?

Matt

References:
- RE: [xmlblaster] Cluster - Client Reconnect
  - From: "Xavier Roques" <xRoques at infovista.com>
- Re: [xmlblaster] Cluster - Client Reconnect
  - From: Marcel Ruff <mr at marcelruff.info>
- [xmlblaster] Receive Only Client
  - From: "Matthew Sargent" <matt.sargent at cox.net>

Prev by Date: [xmlblaster] Receive Only Client
Next by Date: RE: [xmlblaster] Receive Only Client
Previous by thread: [xmlblaster] Receive Only Client
Next by thread: RE: [xmlblaster] Receive Only Client
Index(es):
- Date
- Thread