class NodeLoginModule : LoginModule
Clients must connect to us with a username and password and must use TLS. If a someone connects with ArtemisMessagingComponent.NODE_USER then we confirm it's just us as the node by checking their TLS certificate is the same as our one in our key store. Then they're given full access to all valid queues. If they connect with ArtemisMessagingComponent.PEER_USER then we confirm they belong on our P2P network by checking their root CA is the same as our root CA. If that's the case the only access they're given is the ablility send to our P2P address. In both cases the messages these authenticated nodes send to us are tagged with their subject DN and we assume the CN within that is their legal name. Otherwise if the username is neither of the above we assume it's an RPC user and authenticate against our list of valid RPC users. RPC clients are given permission to perform RPC and nothing else.
NodeLoginModule()
Clients must connect to us with a username and password and must use TLS. If a someone connects with ArtemisMessagingComponent.NODE_USER then we confirm it's just us as the node by checking their TLS certificate is the same as our one in our key store. Then they're given full access to all valid queues. If they connect with ArtemisMessagingComponent.PEER_USER then we confirm they belong on our P2P network by checking their root CA is the same as our root CA. If that's the case the only access they're given is the ablility send to our P2P address. In both cases the messages these authenticated nodes send to us are tagged with their subject DN and we assume the CN within that is their legal name. Otherwise if the username is neither of the above we assume it's an RPC user and authenticate against our list of valid RPC users. RPC clients are given permission to perform RPC and nothing else. |
fun abort(): Boolean |
|
fun commit(): Boolean |
|
fun initialize(subject: Subject, callbackHandler: CallbackHandler, : Map<String, *>, options: Map<String, *>): Unit |
|
fun login(): Boolean |
|
fun logout(): Boolean |
const val CERT_CHAIN_CHECKS_OPTION_NAME: String |
|
const val NODE_ROLE: String |
|
const val PEER_ROLE: String |
|
const val RPC_ROLE: String |
|
const val VERIFIER_ROLE: String |
|
val log: Logger |
fun <T> Any.declaredField(name: String): DeclaredField<T>
Returns a DeclaredField wrapper around the declared (possibly non-public) instance field of the receiver object. fun <T> Any.declaredField(clazz: KClass<*>, name: String): DeclaredField<T>
Returns a DeclaredField wrapper around the (possibly non-public) instance field of the receiver object, but declared in its superclass clazz. |