Skip to content

AndriyKalashnykov/activemq-ldap-authorization

Repository files navigation

Docker Image CI Hits License: MIT

ActiveMQ LDAP Authentication and Authorization

This project demonstrates how to use OpenLDAP and Apache DS (to mimic Microsoft Active Directory) for Apache ActiveMQ Authentication and Authorization it also shows how to secure ActiveMQ web console

Pre-requisites

Clone repo

git clone git@github.com:AndriyKalashnykov/activemq-ldap-authorization.git
cd activemq-ldap-authorization

Provide DockerHub credentials

Edit ./activemq-ldap-authorization/scripts/set-env.sh, uncomment and set following environment variables:

# DOCKER_LOGIN=
# DOCKER_PWD=

Run docker-compose to start up ActiveMQ, Open LDAP server and PHP LDAP Admin

cd 5.1.16
docker-compose up

ActiveMQ web console

In web browser open http://127.0.0.1:8161/admin/ use login: admin and password admin

open http://127.0.0.1:8161/admin/

PHP LDAP Admin web console

In web browser open https://localhost:6443/ use Login DN: cn=admin,dc=activemq,dc=apache,dc=org and Password: admin

open https://localhost:6443/

Test OpenLDAP search

./scripts/search-openldap.sh

Start up Apache DS server and PHP LDAP Admin

cd activemq-ldap-authorization/apacheds-ad
docker-compose up

PHP LDAP Admin web console

In web browser open https://localhost:6443/ use Login DN: cn=mqbroker,ou=Services,ou=ActiveMQ,dc=activemq,dc=apache,dc=org and Password: admin

open https://localhost:6443/

Test Apache DS search

./scripts/search-apacheds.sh

Samba aka Active Directory

cd samba
docker build -t dev-ad -f Dockerfile .
docker run --name dev-ad --hostname ak --privileged -p 636:636 -e SMB_ADMIN_PASSWORD=admin123! -v $PWD/:/opt/ad-scripts -v $PWD/samba-data:/var/lib/samba dev-ad