rabbitmq SSL身份验证

huangapple go评论60阅读模式
英文:

rabbitmq ssl authentication

问题

关于RabbitMQ中的SSL身份验证,我有一个查询。

我目前正在使用启用SSL身份验证的RabbitMQ Docker容器。与依赖传统的用户名和密码凭据不同,我希望身份验证过程仅基于客户端的公钥。

当客户端尝试连接到RabbitMQ服务器时,服务器应获取客户端的公钥并将其与存储的授权客户端公钥列表进行比较。如果匹配成功,服务器应允许访问。

在ZeroMQ中,有一个方便的load_certificates方法,允许从文件夹加载客户端的公钥并将其用于登录过程。

英文:

I have a query regarding SSL authentication in RabbitMQ.

I am currently using a RabbitMQ Docker container with SSL authentication enabled. Instead of relying on traditional username-password credentials, I want the authentication process to be based solely on the client's public key.

When a client attempts to connect to the RabbitMQ server, the server should take the client's public key and compare it to a stored list of authorized clients' public keys. If there's a match, the server should grant access.

In ZeroMQ, there's a convenient load_certificates method that allows for loading clients' public keys from a folder and using them for the login process.

答案1

得分: 1

这是你正在寻找的吗?
https://www.rabbitmq.com/ssl.html

"RabbitMQ 依赖于 Erlang 的 TLS 实现。它假定所有受信任的 CA 证书都已添加到服务器证书包中。"
在这里,你可以创建一个名为 all_cert.bundle 的文件。

以及/或者使用:
RabbitMQ 证书信任存储
https://github.com/rabbitmq/rabbitmq-trust-store

英文:

is this what you are looking for ?
https://www.rabbitmq.com/ssl.html

"RabbitMQ relies on Erlang's TLS implementation. It assumes that all trusted CA certificates are added to the server certificate bundle."
Here you can create an all_cert.bundle file.

And / or use:
RabbitMQ Certificate Trust Store
https://github.com/rabbitmq/rabbitmq-trust-store

huangapple
  • 本文由 发表于 2023年3月15日 18:15:05
  • 转载请务必保留本文链接:https://go.coder-hub.com/75743308.html
匿名

发表评论

匿名网友

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen:

确定