Contents
Cirrus Link Resources
Cirrus Link Website
Contact Us (Sales/Support)
Forum
Cirrus Link Modules Docs for Ignition 7.9.x
Inductive Resources
Ignition User Manual
Knowledge Base Articles
Inductive University
Forum
Table of Contents |
---|
Access Control Lists (ACLs) control what topics a given username/password pair is allowed to publish and subscribe on. ACLs should be designed with a 'principal of least privilege' model while also considering device management and maintenance. For example gateways and devices in the field should be limited to publishing and subscribing only on the topics for which they should be expected to. The same should be true of 'consumer' applications that will be either sending commands to devices in the field or consuming data coming from those devices.
...
topic = The topic or wildcard topic representing the scope of the privilege
RW #
...
Code Block | ||
---|---|---|
| ||
R #, W spBv1.0/STATE/MyPrimaryHost, W spBv1.0/My MQTT Group/NDEATH/#, W |
With the following ACL, the Transmission client My MQTT Group/PLC 1 is able to connect and subscribe but client My MQTT Group/PLC 2 is not authorized to connect with the LWT of spBv1.0/My
...
MQTT
...
Group/NDEATH/PLC 2.
Code Block |
---|
R NBIRTH/#, W spBv1.0/My MQTT Group/DBIRTH+/PLC 1/# |
...