7 Replies Latest reply on Jun 29, 2017 8:51 AM by Justin Bertram

    How to use custom security with JMS destination rule in WildFly

    valsaraj viswanathan Master

      How to use custom security with JMS destination rule in WildFly.

      By default:

      <security-settings>

                              <security-setting match="#">

                                  <permission type="send" roles="guest"/>

                                  <permission type="consume" roles="guest"/>

                                  <permission type="createNonDurableQueue" roles="guest"/>

                                  <permission type="deleteNonDurableQueue" roles="guest"/>

                              </security-setting>

                          </security-settings>

       

       

                          <address-settings>

                              <address-setting match="#">

                                  <dead-letter-address>jms.queue.DLQ</dead-letter-address>

                                  <expiry-address>jms.queue.ExpiryQueue</expiry-address>

                                  <max-delivery-attempts>6</max-delivery-attempts>

                                  <max-size-bytes>10485760</max-size-bytes>

                                  <page-size-bytes>2097152</page-size-bytes>

                                  <message-counter-history-day-limit>10</message-counter-history-day-limit>

                                  <redistribution-delay>1000</redistribution-delay>

                              </address-setting>

                          </address-settings>

       

                              ....   Added queue

                          <jms-queue name="testQ">

                                  <entry name="queue/testQ"/>

                                  <entry name="java:/jms/queue/testQ"/>

                              </jms-queue>

                          <jms-queue name="testQDLQ">

                                  <entry name="queue/testQDLQ"/>

                                  <entry name="java:/jms/queue/testQDLQ"/>

                              </jms-queue>

       

       

      I want ti use separate security domain & role for a queue and separate DLQ for that.

      eg: Queue names testQ & DLQ named testQDLQ. They are restricted by security domain named appSecDom & role testQWriteRole& testQReadRole.