[rabbitmq-discuss] Authenticate client using certificate only
jiri at krutil.com
jiri at krutil.com
Tue Aug 17 10:46:08 BST 2010
Matthias,
> In some specific use cases you might indeed want to associate AMQP
> user identifies with a certificate's CN. In the general case though
> you'd probably want to allow for a many-to-many mapping.
I understand that certificate-based authentication cannot be used by
default. It could however be supported as an alternative to
username/password authentication.
I can imagine that extracting the username from the certificate
subject could also be made configurable, for example using a custom
function that takes the subject data and returns the username.
> This has been considered, but there are no concrete implementation
> plans for such a feature.
Any chance this will be implemented? I believe this feature would
increase the level of security required by some enterprise applications.
Cheers,
Jiri
More information about the rabbitmq-discuss
mailing list