[rabbitmq-discuss] messages grouped and each group differently restricted

• Previous message: [rabbitmq-discuss] messages grouped and each group differently restricted
• Next message: [rabbitmq-discuss] Scaling single queues
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Michel:

Give this a read:

http://www.rabbitmq.com/access-control.html

Much of what it sounds like you're considering doing might be accomplished
within a single vhost assuming you grant permissions to your users, and
name the resources with which they're working, appropriately.

Do note that rabbitmq permissions aren't ACLs...  rather they're per-user
patterns that specify the names of the objects (queues, exchanges, etc.)
that a user can perform operation classes (read/write/configure) upon.  The
discussion at the above URL, and the summary table, should help you anchor
your design thinking...

Best regards,
Jerry




On Fri, Jan 3, 2014 at 1:13 PM, Grenier,Michel [CMC] <
Michel.Grenier at ssc-spc.gc.ca> wrote:

>   Hi  rabbitmq gurus.
>
>     I now have messages on my rabbitmq servers  that I consider public…
>
>     All my users have access to all of them.
>
>     So  same vhost,  exchange,  exchange_type,  and various exchange_key
> possibilities
>
>     because the  type of messages varies a lot.
>
>     Everything works fine.
>
>     Now I would like add several new messages and restrict them in this
> way :
>
> 1-      The new messages will be grouped according to their content…
> into a bunch of categories
>
> 2-      Each category is independent from another (no message in common)
>
> 3-      Each category is restricted (not public)
>
> 4-      Only a  few users  will be allow to receive messages from
> categories
>
> 5-      Each user can be granted a different subsets of these categories …
>
>
>     What is the best way of doing this ?
>
>     Each  category becomes  a different  vhost    and than
>
>     set  permission for the corresponding vhost   to the targetted users
> ?
>
>     I cannot figure out anything else…
>
>     Thanks for you attention and time
>
> Michel Grenier
>
> Spécialiste Senior | Senior Specialist
>
> acquisition et distribution de données | data acquisition and distribution
>
> Service Partagés Canada | Shared Services Canada
> Gouvernement du Canada | Government of Canada
>
>
> _______________________________________________
> rabbitmq-discuss mailing list
> rabbitmq-discuss at lists.rabbitmq.com
> https://lists.rabbitmq.com/cgi-bin/mailman/listinfo/rabbitmq-discuss
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rabbitmq.com/pipermail/rabbitmq-discuss/attachments/20140103/630da8fd/attachment.html>

• Previous message: [rabbitmq-discuss] messages grouped and each group differently restricted
• Next message: [rabbitmq-discuss] Scaling single queues
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]