0

in WSO2 MB management console I'm trying to restrict read and write access for topics to certain users and roles, but it seems that it only effects JMS but not MQTT messaging, despite WSO2 MB states to support this protocol.

I would like to restrict subscribing and publishing to single roles, so a user can either publish or subscribe to a topic but not both.

Are there any solutions?

Oliver

Oliver Sanftleben
  • 21
  • 3
  • Hi Oliver, At the moment MB only authenticates the user credentials when MQTT connections are made. It doesn't do the Authorization part. The only way to get this done is to customize the code base. – ycr Aug 01 '16 at 05:46

1 Answers1

0

Even though mqtt spec didn't specifically define authorization model. Workaround has been implemented recently as an experimental feature for MB 3.2.0 alpha. Implementation is based on carbon permission model with a known limitation of permissions can be defined only for static topics. Please note that this will not be visible in wso2 message broker ui permission tree. Please go through draft documentation in public Jira for more information.

plr
  • 511
  • 3
  • 5
  • 15