sfs
Reputation: 1153
node.js and juggernaut pub/sub
I'm using express framework and juggernaut. I looked at many examples about juggernaut, all examples using this method(client side):
var jug = new Juggernaut;
jug.subscribe("channel_name", function(data){
console.log("Got data: " + data);
});
Is it secure? I don't think so, everybody can subscribe to a channel from javascript console. Is there a way to subscribe a channel from server side?
Upvotes: 4
Views: 1852
Answers (2)
Scott Wilson
Reputation: 1660
I don't know how Juggernaut works, but I know that Faye supports extensions that can include authentication, so that subscribe operations require a valid token. See: http://faye.jcoglan.com/node.html
It would be worth checking whether Juggernaut supports a similar extension/intercept model.
Upvotes: 0
Alex MacCaw
Reputation: 984
Use security through obscurity, use a random channel name (HMAC).
Upvotes: 1
Related Questions
- Publish subscribe with nodejs and redis(node_redis)
- Subscribe/publish with Express js
- Pub/sub implementation in nodeJS
- Meteor Routing, Pub/Sub
- PubSub Server Example: How are messages broadcast?
- implementing pubsub between different node processes
- Unable to receive messages in browser client
- NoSQL with Pubsub
- Nodejs Publish from Client in pub/sub
- Socket IO publish-subscribe model tricky