You can add roles to your destination descriptions. See the docs/examples/jms/example-destinations-service.xml file, look for "<attribute name="SecurityConfig">". The login module to use for JMS is defined in server/xxx/deploy/messaging/messaging-jboss-beans.xml. You can define a login module in server/xxx/conf/login-config.xml.
By the way, I cover this topic in section 8.5.2 of JBoss in Action.
No, access control is defined on a per-destination basis. There is a default role that can be associated with JMS, but it is the role to use if the client does not provide any credentials.
Hi, Peter!
Hope you are still watching this As I understand you have mentioned here JBoss 5. Do you know if this secure procedures are possible with JBoss 4? (Particularly I need this to have done for JBoss 4.0.5). If yes what differences in configurations I should expect? As I know JBoss Messaging is used in JBoss 5 and JBossMQ in JBoss 4.
I will appreciate your answer pretty much. Thanks.
0
