We have two amqp channels running under queue manager QM01:
CHL01 with user abc and running on port 5672 CHL02 with user xyz and running on port 5671
We have topic T01
We have given permissions to user abc of connecting to queue manager QM01 and publish and subscriber to topic T01 using :
setmqaut -m QM01 -t queue -n T01-p abc -all +pub +sub
setmqaut -m QM01 -t qmgr -p abc -all +connect
and we have given only permission to xyz of connecting to queue manager QM01 and no permissions on Topic T01 using:
setmqaut -m QM01 -t queue -n T01 -p xyz -all
setmqaut -m QM01 -t qmgr -p xyz -all +connect
But still when an amqp client use amqp://localhost:5671 to connect to topic T01 ... a subscriber with subusr xyz created on topic T01
Ideally it should not be able to subscribe to topic T01 as it is having user xyz which have no permissions
Please help on this. How can we achieve this?