java 客户机-服务器模式的访问控制
如何限制java编写的客户机访问服务器的队列?比如在服务端MQ上 能不能对某个队列设置用户名、口令,然后必须提供正确的匹配信息才能存取消息?收起
查看其它 6 个回答goylsf的回答
This document applies only to the following language version(s):
English
Question
What is the purpose of MQEnvironment.password?
Does it get validated at the OS level?
When running a WebSphere MQ Java™ Client program, you supply values in the MQEnvironment.userID and the MQEnvironment.password. However, it seems that MQ ignores the MQEnvironment.password,
You find that you have access to queues, regardless of the value of the password (even if the password is not a valid one).
Answer
The MQEnvironment.password is used by a user written security exit program. If a password supplied by an application has to be validated, then you must have a security exit that validates the password.
The validation of the userID is done at the operating system level.
Additional information
WebSphere MQ validates only the userID passed from the client application and the password is always ignored.
Client side:
If a security exit is defined for the client, then this security exit may validate the password.
If a security exit is not defined for the client, then the value of the password is transmitted to the server.
Server side:
If a security exit is defined for the server, then this security exit might validate the password.
If a security exit is not defined for the server, then the value of the password is ignored.
English
Question
What is the purpose of MQEnvironment.password?
Does it get validated at the OS level?
When running a WebSphere MQ Java™ Client program, you supply values in the MQEnvironment.userID and the MQEnvironment.password. However, it seems that MQ ignores the MQEnvironment.password,
You find that you have access to queues, regardless of the value of the password (even if the password is not a valid one).
Answer
The MQEnvironment.password is used by a user written security exit program. If a password supplied by an application has to be validated, then you must have a security exit that validates the password.
The validation of the userID is done at the operating system level.
Additional information
WebSphere MQ validates only the userID passed from the client application and the password is always ignored.
Client side:
If a security exit is defined for the client, then this security exit may validate the password.
If a security exit is not defined for the client, then the value of the password is transmitted to the server.
Server side:
If a security exit is defined for the server, then this security exit might validate the password.
If a security exit is not defined for the server, then the value of the password is ignored.
浏览540