-
Notifications
You must be signed in to change notification settings - Fork 173
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Access control of keys? #40
Comments
Hi @JEnoch! Thought I would check in to see if there is any update on this (i.e. in which months it might be tackled)? |
This is still on our roadmap, but not for short term (i.e. at least not for the next 3 months).
What would be your use case and your desired deadline for this feature ? |
Hi @JEnoch I think you should start discussing the security concepts while the protocol is evolving rather than having to change something later on due to security. If there is one issue that may prevent me from deploying Zenoh on a product today, it is security. This may not be an issue when working on a private network, but still the implementation and more importantly, the spec seems incomplete without security. If I may, I'll try to write my thoughts on the points you raised.
Regards, |
I believe this is related to issue eclipse-zenoh/roadmap#8 on the Roadmap. |
I noticed eclipse-zenoh/roadmap#8 was closed as completed but there is no referenced diff and I'm guessing perhaps it has been pushed back? Assuming that it isn't implemented already, does anyone know if the plugin system would be capable of allowing implementation of some simple ACL for subtrees in routers, based perhaps on authenticated username? |
Support for ACL on key-expression from configuration has been added in 0.11.0-rc.1. |
@Mallets really exciting! Looking through the diff, it isn't clear if this is only for interfaces right now, or whether it can also be configured based on client / peer authentication? |
At the moment it is only per interface |
Support for TLS certificates and user/password is being added in #1073 |
Added as the current ACL feature |
Hi,
Is it possible to have access control to keys? An ability to control the visibility and write access may be useful in some scenarios.
Regards,
Sojan
The text was updated successfully, but these errors were encountered: