mirror of
https://github.com/shadow1ng/fscan.git
synced 2025-09-14 14:06:44 +08:00
ecc79aa9b8
新增功能: - 基于STOMP协议的ActiveMQ弱密码检测 - 完整的多语言i18n支持(中英文) - 自动信息收集和权限识别 - 队列枚举和管理权限检测 - 优化的Docker测试环境配置 技术特性: - 支持端口61613(STOMP)和61614(STOMP+SSL) - 智能用户权限分析 - 异步利用执行机制 - 统一的插件架构设计 - 完善的错误处理和日志记录 测试环境: - 简化的ActiveMQ Docker配置 - 预配置多种测试凭据 - 专注STOMP协议,提升性能
112 lines
4.7 KiB
XML
112 lines
4.7 KiB
XML
<!--
|
|
Licensed to the Apache Software Foundation (ASF) under one or more
|
|
contributor license agreements. See the NOTICE file distributed with
|
|
this work for additional information regarding copyright ownership.
|
|
The ASF licenses this file to You under the Apache License, Version 2.0
|
|
(the "License"); you may not use this file except in compliance with
|
|
the License. You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
-->
|
|
<beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
|
|
xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd">
|
|
|
|
<bean id="securityConstraint" class="org.eclipse.jetty.util.security.Constraint">
|
|
<property name="name" value="BASIC" />
|
|
<property name="roles" value="user,admin" />
|
|
<property name="authenticate" value="true" />
|
|
</bean>
|
|
|
|
<bean id="adminSecurityConstraint" class="org.eclipse.jetty.util.security.Constraint">
|
|
<property name="name" value="BASIC" />
|
|
<property name="roles" value="admin" />
|
|
<property name="authenticate" value="true" />
|
|
</bean>
|
|
|
|
<bean id="securityConstraintMapping" class="org.eclipse.jetty.security.ConstraintMapping">
|
|
<property name="constraint" ref="securityConstraint" />
|
|
<property name="pathSpec" value="/admin/*,/api/*" />
|
|
</bean>
|
|
|
|
<bean id="realmSecurityHandler" class="org.eclipse.jetty.security.ConstraintSecurityHandler">
|
|
<property name="authenticator">
|
|
<bean class="org.eclipse.jetty.security.authentication.BasicAuthenticator" />
|
|
</property>
|
|
<property name="constraintMappings">
|
|
<list>
|
|
<ref bean="securityConstraintMapping" />
|
|
</list>
|
|
</property>
|
|
<property name="loginService">
|
|
<bean class="org.eclipse.jetty.security.HashLoginService">
|
|
<property name="name" value="ActiveMQRealm" />
|
|
<property name="config" value="${activemq.conf}/jetty-realm.properties" />
|
|
</bean>
|
|
</property>
|
|
</bean>
|
|
|
|
<bean id="contexts" class="org.eclipse.jetty.server.handler.ContextHandlerCollection">
|
|
</bean>
|
|
|
|
<bean id="jettyPort" class="org.apache.activemq.web.config.SystemPropertiesConfiguration" init-method="configure">
|
|
<property name="properties">
|
|
<map>
|
|
<entry key="jetty.port" value="8161" />
|
|
<entry key="jetty.host" value="0.0.0.0" />
|
|
</map>
|
|
</property>
|
|
</bean>
|
|
|
|
<bean id="Server" class="org.eclipse.jetty.server.Server"
|
|
depends-on="jettyPort"
|
|
init-method="start" destroy-method="stop">
|
|
|
|
<property name="connectors">
|
|
<list>
|
|
<bean id="Connector" class="org.eclipse.jetty.server.ServerConnector">
|
|
<constructor-arg ref="Server" />
|
|
<property name="host" value="#{systemProperties['jetty.host']}" />
|
|
<property name="port" value="#{systemProperties['jetty.port']}" />
|
|
</bean>
|
|
</list>
|
|
</property>
|
|
|
|
<property name="handler">
|
|
<bean id="handlers" class="org.eclipse.jetty.server.handler.HandlerCollection">
|
|
<property name="handlers">
|
|
<list>
|
|
<ref bean="contexts" />
|
|
<bean class="org.eclipse.jetty.server.handler.DefaultHandler" />
|
|
</list>
|
|
</property>
|
|
</bean>
|
|
</property>
|
|
|
|
</bean>
|
|
|
|
<bean id="invokeStart" class="org.springframework.beans.factory.config.MethodInvokingBean">
|
|
<property name="targetObject" ref="Server" />
|
|
<property name="targetMethod" value="start" />
|
|
</bean>
|
|
|
|
<bean class="org.eclipse.jetty.webapp.WebAppContext">
|
|
<property name="contextPath" value="/admin" />
|
|
<property name="resourceBase" value="${activemq.home}/webapps/admin" />
|
|
<property name="server" ref="Server" />
|
|
<property name="securityHandler" ref="realmSecurityHandler" />
|
|
</bean>
|
|
|
|
<bean class="org.eclipse.jetty.webapp.WebAppContext">
|
|
<property name="contextPath" value="/api" />
|
|
<property name="resourceBase" value="${activemq.home}/webapps/api" />
|
|
<property name="server" ref="Server" />
|
|
<property name="securityHandler" ref="realmSecurityHandler" />
|
|
</bean>
|
|
|
|
</beans> |