Apache
/
activemq-artemis
mirror of https://github.com/apache/activemq-artemis.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

ARTEMIS-2976 Remove password before creating server locator

This commit is contained in:
Domenico Francesco Bruscino 2020-11-05 10:23:23 +01:00 committed by Clebert Suconic
parent 71a9cbb53a
commit 14ec3cb7b0
12 changed files with 18 additions and 24 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
artemis-commons/src/main/java/org/apache/activemq/artemis/utils/uri/BeanSupport.java
View File

@ -71,6 +71,10 @@ public class BeanSupport {
return obj; return obj;
} }
public static <T> void stripPasswords(Map<String, T> properties) {
properties.entrySet().removeIf(entry -> entry.getKey().toLowerCase().contains("password"));
}
public static <P> P setProperties(P bean, Properties properties) public static <P> P setProperties(P bean, Properties properties)
throws IllegalAccessException, NoSuchMethodException, InvocationTargetException { throws IllegalAccessException, NoSuchMethodException, InvocationTargetException {
synchronized (beanUtils) { synchronized (beanUtils) {

1
artemis-core-client/src/main/java/org/apache/activemq/artemis/uri/schema/serverLocator/InVMServerLocatorSchema.java
View File

@ -38,6 +38,7 @@ public class InVMServerLocatorSchema extends AbstractServerLocatorSchema {
protected ServerLocator internalNewObject(URI uri, Map<String, String> query, String name) throws Exception { protected ServerLocator internalNewObject(URI uri, Map<String, String> query, String name) throws Exception {
TransportConfiguration tc = InVMTransportConfigurationSchema.createTransportConfiguration(uri, query, name, "org.apache.activemq.artemis.core.remoting.impl.invm.InVMConnectorFactory"); TransportConfiguration tc = InVMTransportConfigurationSchema.createTransportConfiguration(uri, query, name, "org.apache.activemq.artemis.core.remoting.impl.invm.InVMConnectorFactory");
ServerLocator factory = ActiveMQClient.createServerLocatorWithoutHA(tc); ServerLocator factory = ActiveMQClient.createServerLocatorWithoutHA(tc);
BeanSupport.stripPasswords(query);
return BeanSupport.setData(uri, factory, query); return BeanSupport.setData(uri, factory, query);
} }

4
artemis-core-client/src/main/java/org/apache/activemq/artemis/uri/schema/serverLocator/JGroupsServerLocatorSchema.java
View File

@ -38,10 +38,10 @@ public class JGroupsServerLocatorSchema extends AbstractServerLocatorSchema {
@Override @Override
protected ServerLocator internalNewObject(URI uri, Map<String, String> query, String name) throws Exception { protected ServerLocator internalNewObject(URI uri, Map<String, String> query, String name) throws Exception {
ConnectionOptions options = newConnectionOptions(uri, query);
DiscoveryGroupConfiguration dcConfig = getDiscoveryGroupConfiguration(uri, query, name); DiscoveryGroupConfiguration dcConfig = getDiscoveryGroupConfiguration(uri, query, name);
BeanSupport.stripPasswords(query);
ConnectionOptions options = newConnectionOptions(uri, query);
if (options.isHa()) { if (options.isHa()) {
return ActiveMQClient.createServerLocatorWithHA(dcConfig); return ActiveMQClient.createServerLocatorWithHA(dcConfig);
} else { } else {

5
artemis-core-client/src/main/java/org/apache/activemq/artemis/uri/schema/serverLocator/TCPServerLocatorSchema.java
View File

@ -39,11 +39,12 @@ public class TCPServerLocatorSchema extends AbstractServerLocatorSchema {
@Override @Override
protected ServerLocator internalNewObject(URI uri, Map<String, String> query, String name) throws Exception { protected ServerLocator internalNewObject(URI uri, Map<String, String> query, String name) throws Exception {
ConnectionOptions options = newConnectionOptions(uri, query);
List<TransportConfiguration> configurations = TCPTransportConfigurationSchema.getTransportConfigurations(uri, query, TransportConstants.ALLOWABLE_CONNECTOR_KEYS, name, NettyConnectorFactory.class.getName()); List<TransportConfiguration> configurations = TCPTransportConfigurationSchema.getTransportConfigurations(uri, query, TransportConstants.ALLOWABLE_CONNECTOR_KEYS, name, NettyConnectorFactory.class.getName());
TransportConfiguration[] tcs = new TransportConfiguration[configurations.size()]; TransportConfiguration[] tcs = new TransportConfiguration[configurations.size()];
configurations.toArray(tcs); configurations.toArray(tcs);
BeanSupport.stripPasswords(query);
ConnectionOptions options = newConnectionOptions(uri, query);
if (options.isHa()) { if (options.isHa()) {
return BeanSupport.setData(uri, ActiveMQClient.createServerLocatorWithHA(tcs), query); return BeanSupport.setData(uri, ActiveMQClient.createServerLocatorWithHA(tcs), query);
} else { } else {

3
artemis-core-client/src/main/java/org/apache/activemq/artemis/uri/schema/serverLocator/UDPServerLocatorSchema.java
View File

@ -44,10 +44,11 @@ public class UDPServerLocatorSchema extends AbstractServerLocatorSchema {
@Override @Override
protected ServerLocator internalNewObject(URI uri, Map<String, String> query, String name) throws Exception { protected ServerLocator internalNewObject(URI uri, Map<String, String> query, String name) throws Exception {
ConnectionOptions options = newConnectionOptions(uri, query);
DiscoveryGroupConfiguration dgc = getDiscoveryGroupConfiguration(uri, query, getHost(uri), getPort(uri), name); DiscoveryGroupConfiguration dgc = getDiscoveryGroupConfiguration(uri, query, getHost(uri), getPort(uri), name);
BeanSupport.stripPasswords(query);
ConnectionOptions options = newConnectionOptions(uri, query);
if (options.isHa()) { if (options.isHa()) {
return ActiveMQClient.createServerLocatorWithHA(dgc); return ActiveMQClient.createServerLocatorWithHA(dgc);
} else { } else {

2
artemis-protocols/artemis-amqp-protocol/src/main/java/org/apache/activemq/artemis/protocol/amqp/broker/ProtonProtocolManagerFactory.java
View File

@ -53,7 +53,7 @@ public class ProtonProtocolManagerFactory extends AbstractProtocolManagerFactory
final Map<String, Object> parameters, final Map<String, Object> parameters,
List<BaseInterceptor> incomingInterceptors, List<BaseInterceptor> incomingInterceptors,
List<BaseInterceptor> outgoingInterceptors) throws Exception { List<BaseInterceptor> outgoingInterceptors) throws Exception {
stripPasswordParameters(parameters); BeanSupport.stripPasswords(parameters);
return BeanSupport.setData(new ProtonProtocolManager(this, server, incomingInterceptors, outgoingInterceptors), parameters); return BeanSupport.setData(new ProtonProtocolManager(this, server, incomingInterceptors, outgoingInterceptors), parameters);
} }

2
artemis-protocols/artemis-hornetq-protocol/src/main/java/org/apache/activemq/artemis/core/protocol/hornetq/HornetQProtocolManagerFactory.java
View File

@ -50,7 +50,7 @@ public class HornetQProtocolManagerFactory extends CoreProtocolManagerFactory {
hqIncoming.add(new HQFilterConversionInterceptor()); hqIncoming.add(new HQFilterConversionInterceptor());
hqOutgoing.add(new HQPropertiesConversionInterceptor(false)); hqOutgoing.add(new HQPropertiesConversionInterceptor(false));
stripPasswordParameters(parameters); BeanSupport.stripPasswords(parameters);
return BeanSupport.setData(new HornetQProtocolManager(this, server, hqIncoming, hqOutgoing), parameters); return BeanSupport.setData(new HornetQProtocolManager(this, server, hqIncoming, hqOutgoing), parameters);
} }

2
artemis-protocols/artemis-mqtt-protocol/src/main/java/org/apache/activemq/artemis/core/protocol/mqtt/MQTTProtocolManagerFactory.java
View File

@ -46,7 +46,7 @@ public class MQTTProtocolManagerFactory extends AbstractProtocolManagerFactory<M
final Map<String, Object> parameters, final Map<String, Object> parameters,
List<BaseInterceptor> incomingInterceptors, List<BaseInterceptor> incomingInterceptors,
List<BaseInterceptor> outgoingInterceptors) throws Exception { List<BaseInterceptor> outgoingInterceptors) throws Exception {
stripPasswordParameters(parameters); BeanSupport.stripPasswords(parameters);
return BeanSupport.setData(new MQTTProtocolManager(server, connectedClients, sessionStates, incomingInterceptors, outgoingInterceptors), parameters); return BeanSupport.setData(new MQTTProtocolManager(server, connectedClients, sessionStates, incomingInterceptors, outgoingInterceptors), parameters);
} }

2
artemis-protocols/artemis-openwire-protocol/src/main/java/org/apache/activemq/artemis/core/protocol/openwire/OpenWireProtocolManagerFactory.java
View File

@ -43,7 +43,7 @@ public class OpenWireProtocolManagerFactory extends AbstractProtocolManagerFacto
Map<String, Object> parameters, Map<String, Object> parameters,
final List<BaseInterceptor> incomingInterceptors, final List<BaseInterceptor> incomingInterceptors,
List<BaseInterceptor> outgoingInterceptors) throws Exception { List<BaseInterceptor> outgoingInterceptors) throws Exception {
stripPasswordParameters(parameters); BeanSupport.stripPasswords(parameters);
return BeanSupport.setData(new OpenWireProtocolManager(this, server), parameters); return BeanSupport.setData(new OpenWireProtocolManager(this, server), parameters);
} }

2
artemis-protocols/artemis-stomp-protocol/src/main/java/org/apache/activemq/artemis/core/protocol/stomp/StompProtocolManagerFactory.java
View File

@ -41,7 +41,7 @@ public class StompProtocolManagerFactory extends AbstractProtocolManagerFactory<
final Map<String, Object> parameters, final Map<String, Object> parameters,
final List<BaseInterceptor> incomingInterceptors, final List<BaseInterceptor> incomingInterceptors,
List<BaseInterceptor> outgoingInterceptors) throws Exception { List<BaseInterceptor> outgoingInterceptors) throws Exception {
stripPasswordParameters(parameters); BeanSupport.stripPasswords(parameters);
return BeanSupport.setData(new StompProtocolManager(this, server, filterInterceptors(incomingInterceptors), filterInterceptors(outgoingInterceptors)), parameters); return BeanSupport.setData(new StompProtocolManager(this, server, filterInterceptors(incomingInterceptors), filterInterceptors(outgoingInterceptors)), parameters);
} }

2
artemis-server/src/main/java/org/apache/activemq/artemis/core/protocol/core/impl/CoreProtocolManagerFactory.java
View File

@ -54,7 +54,7 @@ public class CoreProtocolManagerFactory extends AbstractProtocolManagerFactory<I
Map<String, Object> parameters, Map<String, Object> parameters,
final List<BaseInterceptor> incomingInterceptors, final List<BaseInterceptor> incomingInterceptors,
List<BaseInterceptor> outgoingInterceptors) throws Exception { List<BaseInterceptor> outgoingInterceptors) throws Exception {
stripPasswordParameters(parameters); BeanSupport.stripPasswords(parameters);
return BeanSupport.setData(new CoreProtocolManager(this, server, filterInterceptors(incomingInterceptors), filterInterceptors(outgoingInterceptors)), parameters); return BeanSupport.setData(new CoreProtocolManager(this, server, filterInterceptors(incomingInterceptors), filterInterceptors(outgoingInterceptors)), parameters);
} }

13
artemis-server/src/main/java/org/apache/activemq/artemis/spi/core/protocol/AbstractProtocolManagerFactory.java
View File

@ -19,7 +19,6 @@ package org.apache.activemq.artemis.spi.core.protocol;
import java.util.Collections; import java.util.Collections;
import java.util.List; import java.util.List;
import java.util.Map;
import java.util.concurrent.CopyOnWriteArrayList; import java.util.concurrent.CopyOnWriteArrayList;
import org.apache.activemq.artemis.api.core.BaseInterceptor; import org.apache.activemq.artemis.api.core.BaseInterceptor;
@ -51,18 +50,6 @@ public abstract class AbstractProtocolManagerFactory<P extends BaseInterceptor>
} }
} }
/**
* org.apache.commons.beanutils.BeanUtils will log all the parameters so we strip out any password parameters
* (e.g. passwords for SSL keystore and truststore)
*
* @param parameters
*/
protected void stripPasswordParameters(Map<String, Object> parameters) {
if (parameters != null) {
parameters.entrySet().removeIf(entries -> entries.getKey().toLowerCase().contains("password"));
}
}
@Override @Override
public void loadProtocolServices(ActiveMQServer server, List<ActiveMQComponent> services) { public void loadProtocolServices(ActiveMQServer server, List<ActiveMQComponent> services) {
} }