JMS 2.0: Support for Multi-tenancy



Similar documents
<Insert Picture Here> Java EE 7: the New Cloud Platform

<Insert Picture Here> Java EE 7: the New Cloud Platform

WebSphere and Message Driven Beans

The Java EE 7 Platform and Support for the PaaS Model

<Insert Picture Here> Java EE 7. Linda DeMichiel Java EE Platform Lead

WebSphere Server Administration Course

IBM WebSphere Server Administration

Listeners. Formats. Free Form. Formatted

EVALUATION ONLY. WA2088 WebSphere Application Server 8.5 Administration on Windows. Student Labs. Web Age Solutions Inc.

Integration and Configuration of SofwareAG s webmethods Broker with JBOSS EAP 6.1

Towards a cloud-enabled Java EE platform Rok Povše, prof. dr. Matjaž Branko Jurič

Alice. Software as a Service(SaaS) Delivery Platform. innovation is simplicity

Geronimo Quartz Plugins

WEB SERVICES. Revised 9/29/2015

Java Servlet 3.0. Rajiv Mordani Spec Lead

CONFIGURATION AND APPLICATIONS DEPLOYMENT IN WEBSPHERE 6.1

CHAPTER 1 - JAVA EE OVERVIEW FOR ADMINISTRATORS

Oracle Service Bus. Situation. Oracle Service Bus Primer. Product History and Evolution. Positioning. Usage Scenario

No.1 IT Online training institute from Hyderabad URL: sriramtechnologies.com

Course Description. Course Audience. Course Outline. Course Page - Page 1 of 5

Java EE 7: Back-End Server Application Development

Basic TCP/IP networking knowledge of client/server concepts Basic Linux commands and desktop navigation (if don't know we will cover it )

Introducing the Java Message Service

ActiveVOS Server Architecture. March 2009

Configuring Business Monitor for Event Consumption from WebSphere MQ

WebSphere MQ Oracle Enterprise Gateway Integration Guide

White Paper. Cloud Native Advantage: Multi-Tenant, Shared Container PaaS. Version 1.1 (June 19, 2012)

Client-Server Architecture & J2EE Platform Technologies Overview Ahmed K. Ezzat

JAVA API FOR XML WEB SERVICES INTRODUCTION TO JAX-WS, THE JAVA API FOR XML BASED WEB SERVICES (SOAP, WSDL)

Servlet 3.0. Alexis Moussine-Pouchkine. mercredi 13 avril 2011

Oracle WebLogic Server 11g Administration

WebSphere ESB Best Practices

This document summarizes the steps of deploying ActiveVOS on the IBM WebSphere Platform.

Enterprise Integration

Persistent, Reliable JMS Messaging Integrated Into Voyager s Distributed Application Platform

BEAWebLogic. Server. Programming WebLogic Resource Adapters

Copyright Pivotal Software Inc, of 10

Enterprise JavaBeans 3.1

Dragan Juričić, PBZ May 2015

Enterprise Access Control Patterns For REST and Web APIs

WASv6_Scheduler.ppt Page 1 of 18

Building Multi-tenant Applications with Actian PSQL

Web Services Development for IBM WebSphere Application Server V7.0. Version: Demo. Page <<1/10>>

MagDiSoft Web Solutions Office No. 102, Bramha Majestic, NIBM Road Kondhwa, Pune Tel: /

How To Protect Your Computer From Being Hacked On A J2Ee Application (J2Ee) On A Pc Or Macbook Or Macintosh (Jvee) On An Ipo (J 2Ee) (Jpe) On Pc Or

TIBCO Silver Fabric Continuity User s Guide

What I Advise Every Customer To Do On Their Oracle SOA Projects

GlassFish v3. Building an ex tensible modular Java EE application server. Jerome Dochez and Ludovic Champenois Sun Microsystems, Inc.

Spring Data JDBC Extensions Reference Documentation

Enterprise Applications

Learn Oracle WebLogic Server 12c Administration For Middleware Administrators

Oracle Exam 1z0-102 Oracle Weblogic Server 11g: System Administration I Version: 9.0 [ Total Questions: 111 ]

Exam : Oracle 1Z : Oracle WebLogic Server 10gSystem Administration. Version : DEMO

Redpaper Axel Buecker Kenny Chow Jenny Wong

JBS-102: Jboss Application Server Administration. Course Length: 4 days

Course Name: Course in JSP Course Code: P5

Supporting Multi-tenancy Applications with Java EE

This training is targeted at System Administrators and developers wanting to understand more about administering a WebLogic instance.

Smalltalk in Enterprise Applications. ESUG Conference 2010 Barcelona

EJB & J2EE. Component Technology with thanks to Jim Dowling. Components. Problems with Previous Paradigms. What EJB Accomplishes

Configuring Java IDoc Adapter (IDoc_AAE) in Process Integration. : SAP Labs India Pvt.Ltd

JSR 289: SIP Servlet 1.1 Provides Significant Benefits for SIP Application Developers

Improved Credential and SSL Configuration for EE 7

Salesforce Mobile Push Notifications Implementation Guide

JSLEE and SIP-Servlets Interoperability with Mobicents Communication Platform

HOW TO DEPLOY AN EJB APLICATION IN WEBLOGIC SERVER 11GR1

Oracle WebLogic Foundation of Oracle Fusion Middleware. Lawrence Manickam Toyork Systems Inc

SnapLogic Salesforce Snap Reference

Extending IBM WebSphere MQ and WebSphere Message Broker to the Cloud

EclipseLink. Solutions Guide for EclipseLink Release 2.5

Application Developer s Guide

Oracle Service Bus: - When to use, where to use and when not to use

1Z Oracle Weblogic Server 11g: System Administration I. Version: Demo. Page <<1/7>>

Oracle WebLogic Server Monitoring and Performance Tuning

Introducing Apache Pivot. Greg Brown, Todd Volkert 6/10/2010

Spring 3.1 to 3.2 in a Nutshell. Sam Brannen Senior Software Consultant

Oracle WebLogic Integration

TIBCO ActiveMatrix Adapter for LDAP Concepts. Software Release 6.0 August 2010

An Introduction to Job Server In Sage SalesLogix v8.0. Sage SalesLogix White Paper

ODMG-api Guide. Table of contents

ITG Software Engineering

JAVA ENTERPRISE IN A NUTSHELL. Jim Farley and William Crawford. O'REILLY 4 Beijing Cambridge Farnham Koln Paris Sebastopol Taipei Tokyo.

TIBCO Enterprise Message Service Application Integration Guide. Software Release 6.0 July 2010

SAS 9.3 Logging: Configuration and Programming Reference

WebSphere Application Server - Introduction, Monitoring Tools, & Administration

How To Understand The Architecture Of Java 2Ee, J2Ee, And J2E (Java) In A Wordpress Blog Post

SAS 9.4 Logging. Configuration and Programming Reference Second Edition. SAS Documentation

Introduction to WebSphere Process Server and WebSphere Enterprise Service Bus

Passive RFID Solutions for Asset Tracking and Inventory Management

SPRING INTERVIEW QUESTIONS

How To Create A C++ Web Service

WebLogic Server Foundation Topology, Configuration and Administration

WebSphere Training Outline

WHITEPAPER SECURITY APPROACHES AND SECURITY TECHNOLOGIES IN INTEGRATION CLOUD

Transcription:

JMS 2.0: Support for Multi-tenancy About this document This document contains proposals on how multi-tenancy might be supported in JMS 2.0. It reviews the Java EE 7 proposals for resource configuration metadata in respect of JMS resources. It reviews the Java EE 7 proposals for multi-tenancy and discusses the three ways in which the destinations used by different instances of a multi-tenant application might be isolated from one another. It proposes extensions to the @JMSDestinationDefinition and @JMSDefinition annotations (and their XML equivalents) to allow the application to specify the tenant isolation level of a given destination to be either "shared" or "isolated". It proposes extensions to the javax.jms.destination and javax.jms. interfaces to allow a deployer to specify the isolation level to be used with these administered objects. If suggests four alternative means by which an application server could pass the tenantid of a running application to the JMS client. Two of these options would require changes to the JCA spec Multi-tenancy in Java EE Java EE 7 extends the existing Java EE application model to support PaaS and multi-tenancy. This is discussed in the document The Java EE 7 Platform and Support for the PaaS Model at http://java.net/downloads/javaee-spec/paas.pdf The basic idea described in that document is to allow the same PaaS application to be made available in a PaaS environment for use by multiple tenants. Each tenant will then use a different instance (or set of instances) of the application. There are two stages in making a PaaS application available to a particular tenant: The application is submitted to the PaaS environment (this step only has to be done once) The application is customized and deployed for a specific tenant. Instances of the application used by different tenants are isolated from one another. The resources of the application (including JMS resources) may also need to also be isolated from one another so that each tenant uses a separate set of resources. Not all resources may need to be isolated in this way: some resources may be common to all tenants and so can be thought of as shared. 23 Nov 2011 Version 4 Page 1 of 16

Resource configuration in Java EE 6 and 7 Before discussing multi-tenancy any further, let's review the new feature which is being added to the Java EE platform to assist in the resource provisioning. Let's look at a simple example of a session bean which sends a message to a queue: lookup = "jms/conn") connfact; lookup="jms/inbound") Destination destination; public void sendmessage (String payload) throws JMSException{ connection = connfact.create(); Session session = connection.createsession(false, Session.AUTO_ACKNOWLEDGE); MessageProducer messageproducer = session.createproducer(destination); TextMessage textmessage = session.createtextmessage(payload); messageproducer.send(textmessage); connection.close(); See Figure 1 "Resource configuration for a simple JMS application" at the end of this section. In Java EE 6, the deployer has the responsibility of provisioning a suitable connection factory resource and binding it to jms/conn, and provisioning a suitable destination resource and binding it to jms/inbound. In more detail, the deployer has the following responsibilities: 1. Ensuring that the physical resources that are needed exist and are available. In this particular case this means that a JMS server needs to be available which contains the required queue. The deployer will not necessarily be the person who provisions these physical resources: it may be necessary for the deployer to delegate this task to the administrator of the server in question. However the deployer still needs to be sure that the required physical resources exist before they can proceed with the deployment. 2. Creating connection factory and destination objects in the application server's JNDI store which represent these physical resources. In this case this means a. creating a object, configuring it to use the chosen JMS server, and binding it in the application server's JNDI store at jms/conn b. creating a object, configuring it to refer to the chosen physical queue, and binding it in the application server's JNDI store at jms/inbound. The deployer is given no additional information to help the deployer know what resources are needed by the application and how they should be configured. In Java EE 7 the application will be able to provide additional metadata which makes it easier for the deployer to know what is required. The goal is to allow the creation of PaaS providers 23 Nov 2011 Version 4 Page 2 of 16

which can perform this activity automatically, at least in the case when the required resources are provided by the PaaS environment. An application will be able to specify the resources it requires by providing resource definition metadata, either by adding annotations to the source code or by providing an XML equivalent. For JMS the annotations will be @JMSDefinition and @JMSDestinatonDefinition. Essentially, for every connection factory or destination JNDI resource referenced by the application, there may be a @JMSDefinition or @JMSDestinatonDefinition annotation, or an XML equivalent. These contain information which can be used at the deployment stage to provision the required resources. The deployer may be able to ignore or override this information. So what will this metadata look like? For the example code above, it would consist of a @JMSDefinition annotation and a @JMSDestinationDefinition annotation. Here's an example of the resource metadata for defining the JMS connection factory used in the above code example: @JMSDefinition { name="jms/conn", classname="javax.jms., initialpoolsize="32", maxpoolsize="64" (There's also an XML equivalent not discussed here). This annotation specifies that a connection factory needs to be provisioned at jms/connfact. In this particular case the annotation doesn't define what JMS provider will be used or how to connect to it, so the container's built-in JMS server will be used. However it does define information about how the connections will be pooled: the initial connection pool size will be 32 and the maximum connection pool size will be 64. Here's an example of the resource metadata for defining the JMS destination used in the above code example: @JMSDestinationDefinition { description= MDB input queue name="ims/inbound", classname="javax.jms.", resourcename="order" This annotation specifies that the destination needs to be provided at jms/inbound. In this particular case the destination is a queue, and should have the name order. The following diagram summarises the resulting configuration. This diagram will be extended in future sections where we discuss how this application might be used by multiple-tenants. 23 Nov 2011 Version 4 Page 3 of 16

Resource configuration for a simple JMS application Application lookup = "jms/conn") connfact; lookup="jms/inbound") Destination destination; Application Server's JNDI JMS Server order Resource configuration for a multi-tenant application Now let's consider how JMS connection factories and destinations might need to be configured differently when a multi-tenant application is for a specific tenant. A tenant is essentially a unit of isolation. The first thing to consider is the degree of isolation required for each destination used by an application. There are two options. 1. All tenants see the same destination. An example might be a portfolio management application where all tenants subscribe to the same centralized market data feed. We will refer to these as "shared" destinations. 2. Each tenant sees a completely separate destination, so tenants do not receive one another's messages. An example may be a queue used to dispatch work asynchronously between two components of the same application. We will refer to these as "isolated" destinations. A "shared" destination is essentially the same as a destination in a non-multi-tenant environment. Just a normal destination. A "isolated" destination is something new. It could be achieved in several ways: 23 Nov 2011 Version 4 Page 4 of 16

1. Each tenant application uses a completely different JMS server. This gives the highest degree of isolation but requires the highest amount of resources. It does not require the JMS server to be aware that the application is multi-tenant. Let's call this "isolation using multiple providers". 2. Each tenant application uses the same JMS server but different destinations for each tenant. This gives an intermediate level of isolation with an intermediate use of resources. The deployer will be responsible for provisioning administered objects to ensure that that each tenant uses a different destination. It does not require the JMS server to be aware that the application is multi-tenant. Let's call this "isolation using multiple destinations". 3. Each tenant application uses the same JMS server and the same destinations for each tenant., with the JMS provider isolating each the different tenant applications using the same destination. Te degree of isolation this provides would depend on the JMS provider, but it might potentially require the lowest level of resources. Inevitably the JMS server would need to be aware that the application is multi-tenant, and would need to be able to identify which tenant application is using it for a given operation. Let's call this "isolation using a multi-tenant destination". Let's consider JMS destinations (queues and topics) initially. The application itself will refer to a particular destination using a particular JNDI name. When this application is provisioned for a specific tenant, an appropriate destination resource needs to be created and bound to that JNDI name in the JNDI namespace for that tenant. These four options are represented by the following diagrams: 23 Nov 2011 Version 4 Page 5 of 16

Shared destination All tenants share the same destination: Application deployed for tenant 1 lookup = "jms/conn") connfact; lookup= "jms/inbound") Destination destination; Application deployed for tenant 2 lookup = "jms/conn") connfact; lookup= "jms/inbound") Destination destination; Application Server's JNDI (each tenant sees its own JNDI contexts) JMS Server order In this example, both application instances see exactly the same destination. 23 Nov 2011 Version 4 Page 6 of 16

Isolation using multiple providers Each tenant application uses a separate destination, which is achieved by using separate JMS servers for each tenant application. The deployer configures the connection factory object used by each tenant application to use a different JMS server. Application deployed for tenant 1 lookup = "jms/conn") connfact; lookup= "jms/inbound") Destination destination; Application deployed for tenant 2 lookup = "jms/conn") connfact; lookup= "jms/inbound") Destination destination; Application Server's JNDI (each tenant sees its own JNDI contexts) JMS Server 1 JMS Server 2 order order The JMS servers do not need to be aware that they are being used by different tenants. 23 Nov 2011 Version 4 Page 7 of 16

Isolation using multiple destinations Each tenant application uses a separate destination on the same JMS server. The deployer configures the destination object used by each tenant application to use different destinations. Application deployed for tenant 1 lookup = "jms/conn") connfact; lookup= "jms/inbound") Destination destination; Application deployed for tenant 2 lookup = "jms/conn") connfact; lookup= "jms/inbound") Destination destination; Application Server's JNDI (each tenant sees its own JNDI contexts) JMS Server orderq1 orderq2 The JMS server does not need to be aware that these destinations are being used by different tenants. However the provisioning process will need to generate a different destination name for each tenant, possibly automatically. 23 Nov 2011 Version 4 Page 8 of 16

Isolation using a multi-tenant destination Each tenant application uses the same destination on the same JMS server, but the JMS provider is tenant-aware and can isolate each tenant from one another so from their perspective they see different destinations Application deployed for tenant 1 lookup = "jms/conn") connfact; lookup= "jms/inbound") Destination destination; Application deployed for tenant 2 lookup = "jms/conn") connfact; lookup= "jms/inbound") Destination destination; Application Server's JNDI (each tenant sees its own JNDI contexts) JMS Server order tenant 1's view order tenant 2's view The JMS server needs to be aware that the destination is being used by different tenants, and needs to be able to distinguish one tenant from another. There are several ways this might be achieved: by setting the tenantid on the connection factory, by the JMS provider looking up the tenantid from a well-known location in JNDI, or by the application server passing in the tenantid using the JCA API. 23 Nov 2011 Version 4 Page 9 of 16

Specifying the isolation level The resource configuration metadata could be used to allow the application developer to specify whether a destination is shared or isolated. Specifying isolation level on a destination The most obvious way to do this would be to extend the @JMSDestinationDefinition annotation to allow the required isolation level to be specified: @JMSDestinationDefinition { description= MDB input queue name="ims/inbound", classname="javax.jms.", resourcename="order", tenantisolation="shared" @JMSDestinationDefinition { description= MDB input queue name="ims/inbound", classname="javax.jms.", resourcename="order", tenantisolation="isolated" If tenantisolation="shared", the provisioning process will operate in exactly the same way as if the application were not multi-tenant. If, tenantisolation="isolated" the provisioning process would provision the necessary degree of isolation using one of the three approaches described : A. provisioning multiple providers, B. provisioning multiple destinations or C. provisioning a single multi-tenant destination The resource provisioning process could be left to decide for itself which method is used, or the tenantisolation property could be extended to allow the application to specify which of these methods should be used. If method (c) is chosen, the provisioning process should not only provision a physical destination capable of supporting multiple tenants, but also notify the JMS provider at runtime that the queue or topic needs to be specific to a particular tenant id. This can be achieved using a new property on a javax.jms.destination which specifies the isolation level: 23 Nov 2011 Version 4 Page 10 of 16

public interface Destination { /** * Specifies the isolation level of this Destination object * * * @param isolationlevel the isolation level * @throws JMSException */ void setisolationlevel(isolationlevel level) throws JMSException; /** Returns the isolation level of this Destination * * @return the isolation level * @Throws JMSException */ IsolationLevel getisolationlevel() throws JMSException; IsolationLevel could be an emumeration. This property would not be needed if isolation was being provided by methods A or B. If the isolationlevel has been specified on a destination then all messages sent to that destination would be identified with the tenant id. Conversely, a consumer created on that destination would only receive messages identified with that tenant id. This means that the JMS client would need to know the tenantid. The possible ways to achieve this are described in " configuration for a multi-tenant application" below. Although the JMS specification might define a minimum degree of isolation in that tenants will not be able to receive each other's messages, JMS vendors will be free to decide for themselves exactly how isolated the tenants will be. They might choose to implement the isolation using completely separate destinations, or by using the same destination with tenant id as a kind of built-in message selector. Specifying isolation level on a connection factory Application developers may also wish to specify that all destinations used with a particular connection factory should have a certain level of isolation. @JMSDefinition { classname="javax.jms.", tenantisolation="isolated" However the deployment descriptor of an application does not specify which connection factory will be used with a particular destination. JMS 2.0 may change this for MDBs, but in general only the runtime code defines this information. Therefore even if the @JMSDefinition specifies tenantisolation="isolated" the deployer cannot tell what destinations this relates to. The deployer can therefore only achieve the required isolation levels using method A, provisioning multiple providers. This information alone is insufficient information to allow the 23 Nov 2011 Version 4 Page 11 of 16

deployer to offer method B (provisioning multiple destinations) unless the destinations themselves are also annotated with an isolation level. It is also insufficient information to allow the deployer to offer method C (provisioning a single multi-tenant destination) unless the JMS provider allows the multi-tenant nature of a destination to be configured at runtime. In this last case only it may be necessary for the deployer to set the required isolation level on the connection factory using the following API. public interface { /** * Specifies the isolation level of this * * * @param isolationlevel the isolation level * @throws JMSException */ void setisolationlevel(isolationlevel level) throws JMSException; /** Returns the isolation level of this * * @return the isolation level * @Throws JMSException */ IsolationLevel getisolationlevel() throws JMSException;... How to pass tenantid to the JMS client If destination isolation is being achieved using method C (provisioning a single multi-tenant destination) then the JMS client needs to be able to know the tenantid of the application that is using it. There are four possible ways where this may be achieved: 1. The deployer could set the tenantid on the connection factory or destination administered objects used by a tenant application instance. This would require new setter and getter methods on to allow this: void settenantid(string tenantid) String gettenantid() It would be necessary to ensure that only the deployer could call settenantid, not the application itself, to avoid one tenant application adopting a different tenantid. 2. The JMS client could use JNDI to lookup the tenantid from a well-known JNDI context, such as java:comp/tenantid. This would make the JMS client dependent on JNDI, which is probably acceptable as JNDI is part of Java SE. The use of JNDI is potentially expensive, though this is probably acceptable if the lookup is only performed when a JMS connection is first created. 23 Nov 2011 Version 4 Page 12 of 16

3. The JCA API could be extended to allow the application server to pass the tenantid to the resource adapter, which could then use a private API to pass it to the JMS client itself. (this would only work with provider-specific RAs). The JCA specification already defines how the application server may pass "identity" information to the resource adapter by means of a javax.security.auth.subject object. This typically contains a single java.security.principal object which contains the user and password to be used by the JMS client. This works as follows: when a new connection needs to be added to the connection pool, the Manager class (provided by the application server) calls the resource adapter method Managed.createManaged, with the javax.security.auth.subject as an argument. Similarly when an existing connection is fetched from the pool, the Manager calls Managed.get() which again has the javax.security.auth.subject as an argument. If we considered tenantid to be a kind of "identity" information, the JCA spec could require that javax.security.auth.subject object should also contain an additional java.security.principal object which holds the tenantid. Perhaps a new TenantPrincipal class. This would allow each connection to "know" the tenantid that is using it. 4. If it were considered inappropriate to "pollute" the javax.security.auth.subject object with tenant-related information, the methods on Managed and Managed mentioned above could simply be extended to add tenantid as an argument. Note that both (3) and (4) would require changes to the JCA spec. Notes from a review of version 3 The following notes were made following a review of version 3 of this document with the Java EE platform specification leads. Specifying the required isolation level in resource metadata The use of resource metadata to specify the required isolation level was endorsed. 23 Nov 2011 Version 4 Page 13 of 16

@JMSDestinationDefinition { description= MDB input queue name="ims/inbound", classname="javax.jms.", resourcename="order", tenantisolation="isolated" @JMSDefinition { classname="javax.jms.", tenantisolation="isolated" To avoid any possible confusion with database technology, the term "isolation level" should be avoided and the term "tenant isolation" used. Passing tenantid to the connection used by a MDB to consume messages In the discussion "How to pass tenantid to the JMS client", option 3 discussed how the JCA spec allows the application server to pass a javax.security.auth.subject object to the resource adapter when creating a new connection or fetching one from the pool. This Subject object could be extended to hold a new Principal object that contained the tenantid.. However this doesn't cover the connection used by a MDB to receive messages. JCA defines a security inflow contract, which, is a mechanism for allowing the RA to pass a caller java.security.principal to the MDB application. The application can obtain this by calling EJBContext.getCallerPrincipal(). (Can it also call Subject.getPrincipals() to obtain this Principal?). However this doesn't help with Java EE 7 multi-tenancy, where we need a way for the application server to pass the tenant information to the RA when the endpoint is activated. JCA 1.6 doesn't specify a way to do this currently. One possibility is to add a third argument to ResourceAdapter.endpointActivation(MessageEndpoint endpoint, ActivationSpec spec) as follows: ResourceAdapter.endpointActivation( MessageEndpoint endpoint, ActivationSpec spec, javax.security.auth.subject subject) The application server would need to set an appropriate javax.security.auth.subject. This would require a change to the JCA specification. An alternative to passing this in via the JCA API would be for the app server to associate the tenantid with the current thread (how would it do this?), so that the endpointactivation() implementation could call Subject.getPrincipals() and obtain, say, a TenantPrincipal. Note that I don't see tenantid as flowing in with each message: it's the other way round: the call to endpointactivation() would pass the tenantid to the JMS server when creating the consumer. 23 Nov 2011 Version 4 Page 14 of 16

Passing tenantid in a Java EE 8 SaaS application The document makes four proposals for passing tenantid to the JMS client when a connection was created. These proposals were reviewed to assess which of them could be easily extended to support the needs of Java EE 8. This will provide full support for SaaS, which will mean the ability of a single deployed application to work on behalf of multiple tenants. Although the details of how this would work do not need to be decided for Java EE 7, the basic idea would be that tenantid would be associated not with the deployed application but with the current thread. We reviewed which of the four options for passing tenantid to the JMS client discussed above, could be extended to handle SaaS multi-tenancy: Mechanism for passing tenantid to the JMS client 1. The deployer would set the tenantid on the connection factory or destination administered objects used by a tenant application instance. 2. The JMS client could use JNDI to lookup the tenantid from a well-known JNDI context, such as java:comp/tenantid. 3. The JCA API could be extended to allow the application server to pass the tenantid to the resource adapter by means of a javax.security.auth.subject object when a connection was created or fetched from the pool (and when an endpoint was activated). 4. Extend JCA API to allow tenantid to be passed as an argument when a connection was created or fetched from the pool (and when an endpoint was activated). Would it work in a SaaS application? No, since all tenants using a given deployed application would see the same administered objects. Yes, JNDI could be made to return a different tenantid depending on the thread that called it. However since the tenantid would need to be checked every time a JMS client method was used, and JNDI may be relatively slow, this is potentially a slow solution. No, this would allow per-connection tenantid but not per-thread tenantid. No, this would allow per-connection tenantid but not per-thread tenantid. However it was considered that the use of a javax.security.auth.subject object to pass tenantid might be a good way to pass a per-thread tenantid, since Java SE already has the concept of per-thread security credentials. This would by-pass any need to pass this information using the JCA API. 23 Nov 2011 Version 4 Page 15 of 16

The Java EE 7 expert group would take on the issue of how best to pass tenantid to a resource manager in a way which would work on a per-thread basis for Java EE 8. There is therefore no need for a JMS-specific solution. 23 Nov 2011 Version 4 Page 16 of 16

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information