Reputation: 11
Isolated topic namespace for MQTT
Considering MQTT's pub/sub behavior, topic namespace is not isolated and any user can access every other user's data on a topic. I've seen services like flespi which claim they provide isolated name spaces but some of them use containers to isolate users... Is it possible to modify an MQTT broker, e.g. Mosquitto, for that purpose? Or is there such open source broker?
Upvotes: 1
Views: 470
Answers (1)
Reputation: 7044
Mosquitto can set access control to topics based on authentication username. This allows the administrator to restrict access to topics and restrict which clients can subscribe, publish or receive messages on particular topics. This is documented in Mosquitto’s documentation.
For greater flexibility you can also use the dynamic security plugin, or the mosquitto-go-auth plugin which allows you to use a variety of different data sources for authorization and ACL configuration.
Upvotes: 1
Related Questions
- MQTT publisher of message
- Mqtt broker and mqtt bridge on same system
- MQTT topic names for request/response
- mqtt-Where mosquitto store all topics?
- MQTT topic limitations with AWS IoT
- How to share topics between two protocols in mosquitto
- Cluster in MQTT for IoT and Push Notification
- How does a MQTT-Broker handle topics
- How to model MQTT broker to enable clients to subscribe to their messages alone?
- Horizontally scaling mosquitto broker