"ACL check only" mode? #260
Comments
|
(for me an alternative would be a JWT mode where the claim includes the ACL rules, but that seems to be deliberately not supported -- the JS path seems a bit unmaintainable). |
|
(If I got your question right) It's not possible right now unless you know how Mosquitto is setting up the username and use any backend to do a fixed check, and correctly configuring whatever backend you need when worrying about ACLs. And you're right about your assessment in #113 (comment), "pure" JWT checks that include the topics are not yet supported. They might be, but I don't see it happening in the near future unless someone wants to step up. |
|
Did I get it right? |
|
You got it exactly right! I think mosquitto-go-auth covers a bunch of more complex use cases / workflows than what I needed, so I don't know if my feature request is appropriate for this project. |
I use mTLS for authenticating to mosquitto and setting up the username.
Is it possible to have a configuration (custom plugin or http) that does only the ACL check?
The text was updated successfully, but these errors were encountered: