blob: 2ea75efffd34ea93f43ba24e2ebbdfbe790de096 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
|
#ifndef QPID_HA_CONNECTIONEXCLUDER_H
#define QPID_HA_CONNECTIONEXCLUDER_H
/*
*
* Licensed to the Apache Software Foundation (ASF) under one
* or more contributor license agreements. See the NOTICE file
* distributed with this work for additional information
* regarding copyright ownership. The ASF licenses this file
* to you under the Apache License, Version 2.0 (the
* "License"); you may not use this file except in compliance
* with the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing,
* software distributed under the License is distributed on an
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
* KIND, either express or implied. See the License for the
* specific language governing permissions and limitations
* under the License.
*
*/
#include "qpid/broker/ConnectionObserver.h"
#include "qpid/broker/Connection.h"
#include <boost/function.hpp>
#include <sstream>
namespace qpid {
namespace ha {
/**
* Exclude normal connections to a backup broker.
* Connections as ha-admin user are allowed.
*/
class ConnectionExcluder : public broker::ConnectionObserver
{
public:
typedef boost::function<bool()> PrimaryTest;
ConnectionExcluder(string adminUser_, PrimaryTest isPrimary_)
: adminUser(adminUser_), isPrimary(isPrimary_) {}
void opened(broker::Connection& connection) {
if (!isPrimary() && !connection.isLink()
&& !connection.isAuthenticatedUser(adminUser))
{
throw Exception(
QPID_MSG(
"HA: Backup broker rejected connection "
<< connection.getMgmtId() << " by user " << connection.getUserId()
<< ". Only " << adminUser << " can connect to a backup."));
}
else {
QPID_LOG(debug, "HA: Backup broker accepted connection"
<< connection.getMgmtId() << " by user "
<< connection.getUserId());
}
}
private:
string adminUser;
PrimaryTest isPrimary;
};
}} // namespace qpid::ha
#endif /*!QPID_HA_CONNECTIONEXCLUDER_H*/
|