[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
|
Re: [hono-dev] Question regarding connection events
|
On Wed, 2018-05-30 at 13:58 +0000, Morson, Stefano wrote:
> Hi all,
>
> We were discussing about the latest work in Hono regarding connection events in
> the perspective of integrating with Kapua lifecycle events.
>
> For the current implementation, correct me If I’m wrong, Hono connection events
> are (optionally) generated by the (Mqtt)Adapter and sent as events to the
> event/tenant address. We were wondering whether it would be possible for a
> device to purposely create and send a (fake) connection event. If so the next
> question is if there's a requirement in Hono to prevent such behavior by
> enforcing some kind of authorization or if it is the downstream application
> that have to handle the case.
Hono's protocol adapters by default require devices to authenticate. Based on
that, a downstream consumer of such an event can rely on the origin. However, if
the protocol adapter is configured to _not_ require devices to authenticate, then
it is up to the application to either trust the origin or not.
> Finally in the latter case if there's a mechanism to distinguish the source of
> the connection event.
If the device sends the event then the message contains the tenant and device ID
of the origin.
>
>
> Stefano
> _______________________________________________
> hono-dev mailing list
> hono-dev@xxxxxxxxxxx
> To change your delivery options, retrieve your password, or unsubscribe from
> this list, visit
> https://dev.eclipse.org/mailman/listinfo/hono-dev
