The micro broker uses the Java Authentication and Authorization Service (JAAS) to authenticate clients.
If the micro broker is running on a platform supporting security features, then any client application which specifies a user name and password will be authenticated. If authentication succeeds, then the user name provided by the client will be used as the subject name for authorization. If a client does not specify a user name and password, then the client is considered to be authenticated, and the user name “anonymous” is used for authorization.
Micro broker clients: XPD621
Micro broker Clients supply a username (or userID
) and password, which are used to authenticate the client.
Default authentication system: XPD621
By default, the micro broker will use its own default JAAS login module to authenticate clients. The default module uses a simple password file (named micro-pwd
) which is stored in the broker’s data directory. The password file is created, and seeded with the Admin username and password, when ever a micro broker is created. It can be administered (add/remove users, change password) using the API provided by the DefaultUserAdmin
Using a custom authentication system: XPD621
The micro broker uses the standard JAAS framework to authenticate clients.
Parent topic: Configuring micro broker security: XPD621