Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [mosquitto-dev] Authentication and access control - opinions wanted
The changes look good to me.

In my own experimentation I have replaced the authentication functions with a microservice implementation (also used for retained storage) - I added additional info pretty much as you describe.

I use a Whitelist/Blacklist approach for both PUB and SUB - also for the retain flag as you note. If there is interest I would be glad to post the python algorithms in a test module - it handles wildcards appropriately.

Cheers,
ml

On Thu, Jul 2, 2015 at 12:14 PM, Roger Light <roger@xxxxxxxxxx> wrote:
Hi all,

I've started writing up some of the proposed changes for the
authentication plugin. One change that has already been committed is
the possibility of using multiple plugins as described in this bug
report: https://bugs.eclipse.org/bugs/show_bug.cgi?id=464543

Other changes that I'd welcome any input on are on the wiki:
https://wiki.eclipse.org/Mosquitto/AuthenticationReview This is still
a work in progress (I've not written up the authentication check
changes for example), but I thought I'd get the ball rolling. Please
take a look and if you have any opinions any of that or on what you
think the authentication/access control plugin ought to have access
to, please post here.

If you've written your own authentication plugin, it's definitely
worth your while taking a look because there will certainly be
breaking changes, even if not exactly as on that page.

Cheers,

Roger
_______________________________________________
mosquitto-dev mailing list
mosquitto-dev@xxxxxxxxxxx
To change your delivery options, retrieve your password, or unsubscribe from this list, visit
https://dev.eclipse.org/mailman/listinfo/mosquitto-dev

Back to the top