[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
Re: [hono-dev] Telemetry & Device Registration API
|
You are right, Dejan. We are already authorizing every message (and I think we need to). We could do what you seem to propose, i.e. let clients connect to an anonymous relay and send messages to whatever address they want to and filter out unauthorized messages or drop the connection if a client sends a message to an address it is not authorized for.
I’m just thinking if we do this, we’d need to do authorisation on every message. Which is basically the same case as if we don’t specify target address in the first place.
What if we allow producers to connect with /telemetry/${tenent-id}/${device-id} and authorise only on tenant-id? We’re in control over this and the producer is locked on which destinations it can send?
_______________________________________________
hono-dev mailing list
hono-dev@xxxxxxxxxxx
To change your delivery options, retrieve your password, or unsubscribe from this list, visit
https://dev.eclipse.org/mailman/listinfo/hono-dev