All,

I am running ActiveMQ integrated with Jboss 5.1.0. Access to ActiveMQ will be via username & encrypted password. As described in this link: http://activemq.apache.org/encrypted-passwords.html

There are MDB (message driven beans) in my Application deployed into JBoss. If I look more closely at the ra.xml (under \jboss-5.1.0.GA\server\default\deploy\activemq-ra.rar) - the following section handles the password credentials

<authentication-mechanism>
  <authentication-mechanism-type>BasicPassword</authentication-mechanism-type>
  <credential-interface>javax.resource.spi.security.PasswordCredential</credential-interface>
</authentication-mechanism>

As per the connection_1_6.xsd (used by ra.xml)

The credential-interfaceType specifies the interface that the resource adapter implementation supports for the representation of the credentials. This element(s) that use this type i.e. credential-interface, should be used by application server to find out the Credential interface it should use as part of the security contract.

The possible values are:

   javax.resource.spi.security.PasswordCredential
   org.ietf.jgss.GSSCredential
   javax.resource.spi.security.GenericCredential

So I can use only the above 3 interfaces - and none of them actually takes in an encrypted password along with an algorithm - so that it can be decrypted.

Does this mean - since my MDB (message driven beans) use ra.xml to connect to the messageBroker - I have to write my own implementation to connect to JMS Broker (that takes in algorithm name and encrypted password?)

regards D