Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 649919

Summary: QMF method-level ACLs
Product: Red Hat Enterprise MRG Reporter: Pete MacKinnon <pmackinn>
Component: qpid-qmfAssignee: messaging-bugs <messaging-bugs>
Status: CLOSED DEFERRED QA Contact: MRG Quality Engineering <mrgqe-bugs>
Severity: medium Docs Contact:
Priority: high    
Version: 1.3CC: iboverma, jross, matt, tross
Target Milestone: 3.1Keywords: FutureFeature
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-06-18 12:52:16 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 649822, 654422    
Bug Blocks: 662598, 756534    

Description Pete MacKinnon 2010-11-04 19:57:43 UTC 
Once method-level ACL solution is rolled out, we will need instructions/documentation/examples on how to properly configure ACLs for QMF methods implemented by an agent-based component.
Comment 3 Ted Ross 2011-02-18 16:56:44 UTC 
No such capability exists to be documented.  There is no agent-based ACL enforcement component.
Comment 4 Pete MacKinnon 2011-02-18 18:32:35 UTC 
Right, so can Qpid raise a Jira and/or BZ for the design and implementation of same? 

Currently, Grid has to hardcode a check for a single user "cumin" (configured at the broker ACL) in the AuthorizeMethod method check within our QMF object implementations. We need local control within the C++ agents using QMF/Qpid mechanisms for configuring users, roles, methods, etc. In other words, Qpid should provide that agent ACL facility with demos/docs showing Grid to configure and deploy it.