• Distributed Message Service

dms
  1. Help Center
  2. Distributed Message Service
  3. User Guide
  4. Managing Queues and Messages
  5. Managing Queue Policies

Managing Queue Policies

Scenario

Configure queue policies if multiple users or services need to access the same message queue.

Procedure

  1. Log in to the management console.
  2. Click Service List, and choose Application > Distributed Message Service to launch the DMS console.
  3. In the navigation pane, choose Queue Manager.
  4. Click the name of a queue for which you want to add a queue policy.

    Details of the chosen queue are displayed.

  5. On the queue details page, click the Policy Management tab.
  6. On the Policy Management tab page, click Create Queue Policy.
  7. Configure queue policy parameters.

    Table 1 Queue policy parameters

    Parameter

    Description

    Queue Name

    Name of the queue to which the new policy will be applied.

    Permission

    Values:

    • Allow
    • Deny

    The default permission is Allow.

    Policy Type

    Values:

    • User-based
    • Service-based

    The default policy type is User-based.

    User

    This parameter is configurable if Policy Type is User-based.

    Values:

    • All users

      If Permission is set to Allow, all users can perform the specified actions on the chosen queue.

      If Permission is set to Deny, all users cannot perform the specified actions on the chosen queue.

    • Specified users

      If Permission is set to Allow, only the specified users can perform the specified actions on the chosen queue.

      If Permission is set to Deny, the specified users cannot perform the specified actions on the chosen queue.

      The user list can be any comma-separated combination of the following three:

      • domain IDs
      • domain names
      • Uniform Resource Names (URNs)

      URN is a unique resource ID in the format of urn:csp:service:region_id:domain_id:resourcetype:resource or urn:csp:service:region_id:domain_id:resource.

      Fields:

      • csp: cloud service provider
      • service: abbreviation of a service name, for example, SMN
      • region_id: region ID, for example, eu-de
      • domain_id: domain ID
      • resourcetype: resource type
      • resource: resource name, for example, Topic_test

      URN example:

      urn:csp:smn:eu-de:e23bf08ebb924730b452426c60849564:user:Topic_test

    The default authorized users is All users.

    Service

    This parameter is configurable if Policy Type is  Service-based.
    • SMN

      If Permission is set to Allow, only the Simple Message Notification (SMN) service can perform the specified actions on the chosen queue.

      If Permission is set to Deny, the SMN service cannot perform the specified actions on the chosen queue.

    Action

    Actions on the chosen queue.

    Values:

    • GetQueue
    • CreateGroup
    • GetGroups
    • DeleteGroup
    • ProduceMessages
    • ConsumeMessages