When using the jaasDualAuthentication plug-in there are problems with the userid's. The properties files contain:
- one "system" account in the "admins" group
- one "user" account in the "consumers" group
What we would like to define as ACLs:
- "admins" can do anything
- only "consumers" can consume
- anybody can send messages to any destination
The main problem with the login.config file above is that, if you supply "system" as login and anything as password (even an invalid password), the broker lets you in and treat you as the "system" user.