AMQP Adapter
The AMQP protocol adapter allows clients (devices or gateway components) supporting the AMQP 1.0 protocol to publish messages to Eclipse Hono™’s Telemetry, Event and Command & Control endpoints.
Device Authentication
By default, all Hono protocol adapters require clients (devices or gateway components) to authenticate during connection establishment. This is the preferred way for devices to publish data via protocol adapters. The AMQP adapter supports both the SASL PLAIN and SASL EXTERNAL authentication mechanisms.
This guide provides examples for publishing telemetry and events for authenticated (using SASL PLAIN) and unauthenticated clients.
The AMQP adapter can be configured to allow unauthenticated devices to connect by setting configuration variable
HONO_AMQP_AUTHENTICATION_REQUIRED to false.
SASL PLAIN Authentication
The AMQP adapter supports authenticating clients using the SASL PLAIN mechanism. This means that clients need to
provide a username and a password in the authcid and passwd fields of their SASL response as defined in
RFC 4616, Section 2 when connecting to the AMQP adapter.
The username provided in the authcid field must match the pattern auth-id@tenant, e.g. sensor1@DEFAULT_TENANT.
The adapter then verifies the provided username and password against the credentials that the configured Credentials service has on record for the client as described in Username/Password based Authentication. If the credentials match, the client has been authenticated successfully and the SASL handshake is completed.
The examples below refer to devices 4711 and gw-1 of tenant DEFAULT_TENANT using auth-ids sensor1 and gw1 and
corresponding passwords. The example deployment as described in the Deployment Guide
comes pre-configured with the corresponding entities in its device registry component.
There is a subtle difference between the device identifier (device-id) and the auth-id a device uses for authentication. See Device Identity for a discussion of the concepts.
SASL EXTERNAL Authentication
The AMQP adapter supports authenticating clients using the SASL EXTERNAL mechanism. This mechanism builds on top of a successful validation of an X.509 (client) certificate presented by the client during a TLS handshake as described in Client Certificate based Authentication.
The AMQP adapter needs to be configured for TLS in order to support this mechanism.
Resource Limit Checks
The adapter performs additional checks regarding resource limits when a client tries to connect and/or send a message to the adapter.
Connection Limits
The adapter immediately closes a newly established connection with an amqp:unauthorized-access error if
- the maximum number of connections per protocol adapter instance is reached, or
- if the maximum number of simultaneously connected devices for the client’s tenant is reached.
Please refer to resource-limits for details.
Connection Duration Limits
The adapter immediately closes a newly established connection with an amqp:unauthorized-access error if the
connection duration limit that has been
configured for the client’s tenant is exceeded.
Message Limits
The adapter
- immediately closes a newly established connection with an
amqp:unauthorized-accesserror and - rejects any AMQP 1.0 message containing
- telemetry data or an event uploaded by a client
- a command sent by a north bound application
if the message limit that has been configured for the device’s tenant is exceeded.
Connection Events
The adapter can emit Connection Events for client connections being established and/or terminated. Please refer to the common configuration options for details regarding how to enable this behavior.
The adapter includes the client’s AMQP container-id as the Connection Event’s remote-id.
Link Establishment
The AMQP adapter supports the
Anonymous Terminus for Message Routing specification
and requires clients to create a single sender link using the null target address for publishing all types of messages
to the AMQP adapter.
Using AT MOST ONCE delivery semantics, the client will not wait for the message to be accepted and settled by the downstream consumer. However, with AT LEAST ONCE, the client sends the message and waits for the message to be delivered to and accepted by the downstream consumer. If the message cannot be delivered due to a failure, the client will be notified.
The client indicates its preferred message delivery mode by means of the snd-settle-mode and rcv-settle-mode
fields of its attach frame during link establishment. Clients should use mixed as the snd-settle-mode and first
as the rcv-settle-mode in order to be able to use the same link for sending all types of messages using different
delivery semantics as described in the following sections.
Error Handling
The AMQP adapter distinguishes between two types of errors when a message is published using AT LEAST ONCE delivery semantics:
- An error caused by the client side, e.g. invalid message address, content-type, adapter disabled for tenant etc.
- An error caused by the server side, e.g. no downstream consumers registered, downstream connection loss etc.
For a client side error, the adapter settles the message transfer with the rejected outcome and provides an error description in the corresponding disposition frame. In the case of a server-side error, the adapter settles the message with the released outcome, indicating to the client that the message itself was OK but it cannot be delivered due to a failure beyond the control of the client. In the latter case, a client may attempt to re-send the message unaltered.
In case of terminal errors the AMQP connection to the device is closed. The errors that are classified as terminal are listed below.
- The adapter is disabled for the tenant that the client belongs to.
- The authenticated device or gateway is disabled or not registered.
- The tenant is disabled or does not exist.
- The authenticated device is not authorized anymore.
Command-line Client
Hono’s Command Line Client can be used to interact with the AMQP adapter. It supports sending telemetry and/or
event messages as well as receiving commands and sending response messages. When invoked with the -h or --help
option, the client provides an overview of the supported commands and their synopsis.
The following command starts the client in interactive shell mode, establishes a connection to Hono Sandbox’s AMQP adapter and prompts the user for a command to execute:
# in directory: hono/cli/target/
java -jar hono-cli-*-exec.jar amqp --sandbox
hono-cli/amqp-device>
A list of available commands can be displayed using the help command, exit will close the client.
The example command above uses the default path to a Linux based system’s trusted CA certificates. The path may need to be adapted when running on a different type of operating system.
Publishing Telemetry Data
A client device indicates the delivery mode to use when uploading telemetry messages by means of the settled and rcv-settle-mode properties of the AMQP transfer frame(s) it uses for uploading a message. The AMQP adapter will accept messages using a delivery mode according to the following table:
| settled | rcv-settle-mode | Delivery semantics |
|---|---|---|
false |
first |
The adapter will forward the message to the downstream messaging infrastructure configured for the device’s tenant. In case of an AMQP 1.0 Messaging Network, the transfer will be settled with the outcome of transferring the message to the Messaging Network. In case of Kafka, the transfer will be settled with outcome accepted once the message has been successfully transferred to the Kafka broker. Otherwise, the transfer will be settled with outcome released.The adapter will accept any re-delivered message. Sending unsettled messages allows for clients to implement either AT LEAST ONCE or AT MOST ONCE delivery semantics, depending on whether a client actually waits for and considers the disposition frames it receives from the adapter or not. This is the recommended mode for uploading telemetry data. |
true |
first |
The adapter will settle the transfer of the message with the accepted outcome before forwarding it to the downstream messaging infrastructure configured for the device’s tenant. Sending pre-settled messages allows for clients to implement AT MOST ONCE delivery semantics only. This is the fastest mode of delivery but has the drawback of less reliable end-to-end flow control and potential loss of messages without notice. |
All other combinations are not supported by the adapter and will result in the message being ignored (pre-settled) or rejected (unsettled).
Publish Telemetry Data (authenticated Device)
- Authentication: SASL PLAIN or SASL EXTERNAL
- Message properties:
- (required) to:
ttelemetry
- (optional) content-type: The type of payload contained in the message body. Required, if the message body is empty.
The given content type, if not empty, will be used in the message being forwarded downstream. Otherwise, the content type
of the downstream message will be set to
application/octet-stream, if the payload is not empty and no default content type has been defined for the origin device or its tenant (see Downstream Meta Data).
- (required) to:
- Message Body:
- (optional) Arbitrary payload contained in either a single AMQP Data or AmqpValue section. Note that the adapter only supports values of type string or array of bytes in the AmqpValue section. Values of other types will be ignored.
- Outcomes:
accepted: The message has been successfully forwarded downstream.released: The message could not be processed by the adapter due to a (temporary) problem that has not been caused by the client. Potential reasons include that there is no active downstream consumer for messages from the device.rejected: The message could not be processed by the adapter because the client and/or the message did not fulfill some requirements. The rejected outcome’s error field will indicate the reason why the message could not be processed. Possible error conditions include:hono:bad-request: The message does not meet all formal requirements, e.g. a required property is missing.amqp:unauthorized-access: The adapter is not enabled for the tenant that the client belongs to.amqp:resource-limit-exceeded: One of the Resource Limit Checks has failed for the tenant that the client belongs to.amqp:precondition-failed: The message does not fulfill certain requirements, e.g adapter cannot assert device registration etc.
When a device publishes data to the telemetry address, the AMQP adapter automatically determines the device’s identity and tenant during the authentication process.
Examples
Start the client in interactive mode:
# in directory: hono/cli/target/
java -jar hono-cli-*-exec.jar amqp --sandbox
hono-cli/amqp-device>
When interacting with Hono’s Sandbox AMQP adapter, the host, port and credentials options can be replaced by the
single --sandbox option. In that case, the client will authenticate as device 4711 of the DEFAULT_TENANT.
Now publish some JSON data for the authenticated device (4711):
# at the hono-cli/amqp-device> prompt
telemetry --payload '{"foo": "bar"}' --content-type application/json
The message can also be sent in non-interactive mode:
# in directory: hono/cli/target/
java -jar hono-cli-*-exec.jar amqp --sandbox telemetry --payload '{"foo": "bar"}' --content-type application/json
Note that sending the message this way will take a little longer than in interactive mode because the connection to the AMQP adapter needs to be established first. In interactive mode the connection is established during startup of the client and can then be (re-)used for sending multiple messages.
Publish Telemetry Data (unauthenticated Device)
- Authentication: SASL PLAIN or SASL EXTERNAL
- Message properties:
- (required) to:
t/${tenant-id}/${device-id}telemetry/${tenant-id}/${device-id}
- (optional) content-type: The type of payload contained in the message body. Required, if the message body is empty.
The given content type, if not empty, will be used in the message being forwarded downstream. Otherwise, the content type
of the downstream message will be set to
application/octet-stream, if the payload is not empty and no default content type has been defined for the origin device or its tenant (see Downstream Meta Data).
- (required) to:
- Message Body:
- (optional) Arbitrary payload contained in either a single AMQP Data or AmqpValue section. Note that the adapter only supports values of type string or array of bytes in the AmqpValue section. Values of other types will be ignored.
- Outcomes:
accepted: The message has been successfully forwarded downstream.released: The message could not be processed by the adapter due to a (temporary) problem that has not been caused by the client. Potential reasons include that there is no active downstream consumer for messages from the device.rejected: The message could not be processed by the adapter because the client and/or the message did not fulfill some requirements. The rejected outcome’s error field will indicate the reason why the message could not be processed. Possible error conditions include:hono:bad-request: The message does not meet all formal requirements, e.g. a required property is missing.amqp:unauthorized-access: The adapter is not enabled for the tenant that the client belongs to.amqp:resource-limit-exceeded: One of the Resource Limit Checks has failed for the tenant that the client belongs to.amqp:precondition-failed: The message does not fulfill certain requirements, e.g adapter cannot assert device registration etc.
This address format is used by devices that have not authenticated to the protocol adapter. Note that this requires the
adapter’s HONO_AMQP_AUTHENTICATION_REQUIRED configuration property to be explicitly set to false.
Examples
The Hono Sandbox does not support connections from unauthenticated devices. However, if it did, the command for
publishing some JSON data on behalf of device 4711 of tenant DEFAULT_TENANT would look like this:
# in directory: hono/cli/target/
java -jar hono-cli-*-exec.jar amqp --sandbox telemetry --tenant DEFAULT_TENANT --device 4711 --payload '{"foo": "bar"}' --content-type application/json
The --tenant and --device options are required in this case because the command does not specify any credentials that
the AMQP adapter could determine the tenant and device ID from.
Publish Telemetry Data (authenticated Gateway)
A device that publishes data on behalf of another device is called a gateway device. The message address is used by gateway components to publish data on behalf of other devices which do not connect to a protocol adapter directly but instead are connected to the gateway, e.g. using some low-bandwidth radio based technology like SigFox or LoRa. In this case the credentials provided by the gateway during connection establishment with the protocol adapter are used to authenticate the gateway whereas the message address is used to identify the device that the gateway publishes data for.
- Authentication: SASL PLAIN or SASL EXTERNAL
- Message properties:
- (required) to:
t//${device-id}t/${tenant-id}/${device-id}telemetry//${device-id}telemetry/${tenant-id}/${device-id}
- (optional) content-type: The type of payload contained in the message body. Required, if the message body is empty.
The given content type, if not empty, will be used in the message being forwarded downstream. Otherwise, the content type
of the downstream message will be set to
application/octet-stream, if the payload is not empty and no default content type has been defined for the origin device or its tenant (see Downstream Meta Data).
- (required) to:
- Message Body:
- (optional) Arbitrary payload contained in either a single AMQP Data or AmqpValue section. Note that the adapter only supports values of type string or array of bytes in the AmqpValue section. Values of other types will be ignored.
- Outcomes:
accepted: The message has been successfully forwarded downstream.released: The message could not be processed by the adapter due to a (temporary) problem that has not been caused by the client. Potential reasons include that there is no active downstream consumer for messages from the device.rejected: The message could not be processed by the adapter because the client and/or the message did not fulfill some requirements. The rejected outcome’s error field will indicate the reason why the message could not be processed. Possible error conditions include:hono:bad-request: The message does not meet all formal requirements, e.g. a required property is missing.amqp:unauthorized-access: The adapter is not enabled for the tenant that the client belongs to.amqp:resource-limit-exceeded: One of the Resource Limit Checks has failed for the tenant that the client belongs to.amqp:precondition-failed: The message does not fulfill certain requirements, e.g adapter cannot assert device registration etc.
Examples
A gateway connecting to the adapter using gw@DEFAULT_TENANT as username and gw-secret as password and then publishing
some JSON data on behalf of device 4712:
# in directory: hono/cli/target/
java -jar hono-cli-*-exec.jar amqp --sandbox -u gw@DEFAULT_TENANT -p gw-secret telemetry --device 4712 --payload '{"foo": "bar"}' --content-type application/json
Note that in the command above the --sandbox option is used to indicate that the client should connect to Hono’s
Sandbox AMQP adapter. The -u and -p options are then used to connect using the gateway device’s credentials instead
of the default device’s.
Publishing Events
The adapter supports AT LEAST ONCE delivery of Event messages only. A client therefore MUST set the settled
property to false and the rcv-settle-mode property to first in all transfer frame(s) it uses for uploading events.
All other combinations are not supported by the adapter and result in the message being rejected.
Publish an Event (authenticated Device)
- Authentication: SASL PLAIN or SASL EXTERNAL
- Message properties:
- (required) to:
eevent
- (optional) content-type: The type of payload contained in the message body. Required, if the message body is empty.
The given content type, if not empty, will be used in the message being forwarded downstream. Otherwise, the content type
of the downstream message will be set to
application/octet-stream, if the payload is not empty and no default content type has been defined for the origin device or its tenant (see Downstream Meta Data).
- (required) to:
- Message Body:
- (optional) Arbitrary payload contained in either a single AMQP Data or AmqpValue section. Note that the adapter only supports values of type string or array of bytes in the AmqpValue section. Values of other types will be ignored.
- Outcomes:
accepted: The message has been successfully forwarded downstream.released: The message could not be processed by the adapter due to a (temporary) problem that has not been caused by the client.rejected: The message could not be processed by the adapter because the client and/or the message did not fulfill some requirements. The rejected outcome’s error field will indicate the reason why the message could not be processed. Possible error conditions include:hono:bad-request: The message does not meet all formal requirements, e.g. a required property is missing.amqp:unauthorized-access: The adapter is not enabled for the tenant that the client belongs to.amqp:resource-limit-exceeded: One of the Resource Limit Checks has failed for the tenant that the client belongs to.amqp:precondition-failed: The message does not fulfill certain requirements, e.g adapter cannot assert device registration etc.
This is the preferred way for devices to publish events. It is available only if the protocol adapter has been configured to require devices to authenticate (which is the default).
Example
Publish a JSON string for the authenticated device (4711):
# in directory: hono/cli/target/
java -jar hono-cli-*-exec.jar amqp --sandbox event --payload '{"foo": "bar"}' --content-type application/json
Publish an Event (unauthenticated Device)
- Authentication: SASL PLAIN or SASL EXTERNAL
- Message properties:
- (required) to:
e/${tenant-id}/${device-id}event/${tenant-id}/${device-id}
- (optional) content-type: The type of payload contained in the message body. Required, if the message body is empty.
The given content type, if not empty, will be used in the message being forwarded downstream. Otherwise, the content type
of the downstream message will be set to
application/octet-stream, if the payload is not empty and no default content type has been defined for the origin device or its tenant (see Downstream Meta Data).
- (required) to:
- Message Body:
- (optional) Arbitrary payload contained in either a single AMQP Data or AmqpValue section. Note that the adapter only supports values of type string or array of bytes in the AmqpValue section. Values of other types will be ignored.
- Outcomes:
accepted: The message has been successfully forwarded downstream.released: The message could not be processed by the adapter due to a (temporary) problem that has not been caused by the client.rejected: The message could not be processed by the adapter because the client and/or the message did not fulfill some requirements. The rejected outcome’s error field will indicate the reason why the message could not be processed. Possible error conditions include:hono:bad-request: The message does not meet all formal requirements, e.g. a required property is missing.amqp:unauthorized-access: The adapter is not enabled for the tenant that the client belongs to.amqp:resource-limit-exceeded: One of the Resource Limit Checks has failed for the tenant that the client belongs to.amqp:precondition-failed: The message does not fulfill certain requirements, e.g adapter cannot assert device registration etc.
This address format is used by devices that have not authenticated to the protocol adapter. Note that this requires the
adapter’s HONO_AMQP_AUTHENTICATION_REQUIRED configuration property to be explicitly set to false.
Example
The Hono Sandbox does not support connections from unauthenticated devices. However, if it did, the command for
publishing some JSON data on behalf of device 4711 of tenant DEFAULT_TENANT would look like this:
# in directory: hono/cli/target/
java -jar hono-cli-*-exec.jar amqp --sandbox event --tenant DEFAULT_TENANT --device 4711 --payload '{"foo": "bar"}' --content-type application/json
The --tenant and --device options are required in this case because the command does not specify any credentials that
the AMQP adapter could determine the tenant and device ID from.
Publish an Event (authenticated Gateway)
- Authentication: SASL PLAIN or SASL EXTERNAL
- Message properties:
- (required) to:
e//${device-id}event//${device-id}e/${tenant-id}/${device-id}event/${tenant-id}/${device-id}
- (optional) content-type: The type of payload contained in the message body. Required, if the message body is empty.
The given content type, if not empty, will be used in the message being forwarded downstream. Otherwise, the content type
of the downstream message will be set to
application/octet-stream, if the payload is not empty and no default content type has been defined for the origin device or its tenant (see Downstream Meta Data).
- (required) to:
- Message Body:
- (optional) Arbitrary payload contained in either a single AMQP Data or AmqpValue section. Note that the adapter only supports values of type string or array of bytes in the AmqpValue section. Values of other types will be ignored.
- Outcomes:
accepted: The message has been successfully forwarded downstream.released: The message could not be processed by the adapter due to a (temporary) problem that has not been caused by the client.rejected: The message could not be processed by the adapter because the client and/or the message did not fulfill some requirements. The rejected outcome’s error field will indicate the reason why the message could not be processed. Possible error conditions include:hono:bad-request: The message does not meet all formal requirements, e.g. a required property is missing.amqp:unauthorized-access: The adapter is not enabled for the tenant that the client belongs to.amqp:resource-limit-exceeded: One of the Resource Limit Checks has failed for the tenant that the client belongs to.amqp:precondition-failed: The message does not fulfill certain requirements, e.g adapter cannot assert device registration etc.
Example
A gateway connecting to the adapter using gw@DEFAULT_TENANT as username and gw-secret as password and then publishing
some JSON data on behalf of device 4712:
# in directory: hono/cli/target/
java -jar hono-cli-*-exec.jar amqp --sandbox -u gw@DEFAULT_TENANT -p gw-secret event --device 4712 --payload '{"foo": "bar"}' --content-type application/json
Note that in the command above the --sandbox option is used to indicate that the client should connect to Hono’s
Sandbox AMQP adapter. The -u and -p options are then used to connect using the gateway device’s credentials instead
of the default device’s.
Command & Control
The AMQP adapter enables devices to receive commands that have been sent by business applications by means of opening a receiver link using a device specific source address as described below. When a device no longer wants to receive commands anymore, it can simply close the link.
When a device has successfully opened a receiver link for commands, the adapter initiates sending an
empty notification via the
Command Router on behalf of the device to
the downstream messaging infrastructure with the ttd header set to -1, indicating that the device will be ready to
receive commands until further notice. Analogously, the adapter initiates sending an empty notification via the
Command Router with the ttd header set
to 0 when a device closes the link or disconnects.
Devices send their responses to commands by means of sending an AMQP message with properties specific to the command that has been executed. The AMQP adapter accepts responses being published using either at most once (QoS 0) or at least once (QoS 1) delivery semantics. The device must send the command response messages using the same (sender) link that it uses for sending telemetry data and events.
The AMQP adapter checks the configured message limit before accepting
any command requests and responses. In case of incoming command requests from business applications or the command
responses from devices, if the message limit is exceeded, the Adapter rejects the message with the reason
amqp:resource-limit-exceeded.
Receiving Commands
A device MUST use the following source address in its attach frame to open a link for receiving commands:
command(authenticated device)command(authenticated gateway receiving commands for all devices it acts on behalf of)command/${tenant}/${device-id}(unauthenticated device)command/${tenant}/${device-id}orcommand//${device-id}(authenticated gateway receiving commands for a specific device it acts on behalf of)
The adapter supports AT LEAST ONCE delivery of command messages only. A client therefore MUST use unsettled for
the snd-settle-mode and first for the rcv-settle-mode fields of its attach frame during link establishment.
All other combinations are not supported and result in the termination of the link.
Once the link has been established, the adapter will send command messages having the following properties:
| Name | Mandatory | Location | Type | Description |
|---|---|---|---|---|
| subject | yes | properties | string | Contains the name of the command to be executed. |
| reply-to | no | properties | string | Contains the address to which the command response should be sent. This property will be empty for one-way commands. |
| correlation-id | no | properties | string | This property will be empty for one-way commands, otherwise it will contain the identifier used to correlate the response with the command request. |
| device_id | no | application-properties | string | This property will only be set if an authenticated gateway has connected to the adapter. It will contain the id of the device (connected to the gateway) that the command is targeted at. |
Authenticated gateways will receive commands for devices which do not connect to a protocol adapter directly but instead are connected to the gateway. Corresponding devices have to be configured so that they can be used with a gateway. See Connecting via a Device Gateway for details.
A gateway can open a link to receive commands for all devices it acts on behalf of. An authenticated gateway can also open a receiver link for commands targeted at a specific device.
When processing an incoming command message, the protocol adapter will give precedence to a device-specific command consumer matching the command target device, whether it was created by a gateway or by the device itself. If multiple such consumer links have been created, by multiple gateways and/or from the device itself, the gateway or device that last created the consumer link will get the command messages.
If no device-specific command consumer exists for a command target device, but one gateway, that may act on behalf of the device, has opened a generic, device-unspecific command consumer link, then the command message is sent to that gateway.
If multiple gateways have opened a generic command consumer link, the protocol adapter may have to decide to which gateway a particular command message will be sent to. In case the command target device has already sent a telemetry, event or command response message via a gateway and if that gateway has opened a command consumer link, that gateway will be chosen. Otherwise one gateway that may act on behalf of the command target device and that has opened a command consumer link will be chosen randomly to receive the command message.
Clients MUST settle command messages using one of the following outcomes:
accepted: The command message has been accepted for processing.released: The command message can not be processed by the client due to a (temporary) problem at the client side.rejected: The command message can not be processed by the client because the message does not fulfill some requirements. The rejected outcome’s error field SHOULD indicate the reason why the message can not be processed.
Sending a Response to a Command
Devices are required to publish a response to a command that contain a reply-to address and a correlation-id. Devices may use the same anonymous sender link for this purpose that they also use for sending telemetry data and events.
The adapter supports AT LEAST ONCE delivery of command response messages only. A client therefore MUST set the
settled property to false and the rcv-settle-mode property to first in all transfer frame(s) it uses
for uploading command responses. All other combinations are not supported by the adapter and result in the message
being rejected.
- Authentication: SASL PLAIN or SASL EXTERNAL
- Message properties:
- (required) to: MUST contain the value of the reply-to property of the command request message.
- (required) correlation-id: MUST contain the value of the correlation-id property of the command request message.
- (optional) content-type: The type of payload contained in the message body.
- Message application-properties:
- (required) status: MUST contain an AMQP 1.0 int typed status code indicating the outcome of processing the command at the device (see Command & Control API for details).
- Message Body:
- (optional) Arbitrary payload contained in either a single AMQP Data or AmqpValue section. Note that the adapter only supports values of type string or array of bytes in the AmqpValue section. Values of other types will be ignored.
- Outcomes:
accepted: The message has been successfully forwarded downstream.released: The message could not be processed by the adapter due to a (temporary) problem that has not been caused by the client. Potential reasons include that there is no active downstream consumer for messages from the device.rejected: The message could not be processed by the adapter because the client and/or the message did not fulfill some requirements. The rejected outcome’s error field will indicate the reason why the message could not be processed. Possible error conditions include:hono:bad-request: The message does not meet all formal requirements, e.g. a required property is missing.amqp:unauthorized-access: The adapter is not enabled for the tenant that the client belongs to.amqp:resource-limit-exceeded: One of the Resource Limit Checks has failed for the tenant that the client belongs to.amqp:precondition-failed: The message does not fulfill certain requirements, e.g adapter cannot assert device registration etc.
Examples
The AMQP adapter client can be used to simulate a device which receives commands and sends responses back to the application.
Start the client in interactive mode:
# in directory: hono/cli/target/
java -jar hono-cli-*-exec.jar amqp --sandbox
hono-cli/amqp-device>
When interacting with Hono’s Sandbox AMQP adapter, the host, port and credentials options can be replaced by the
single --sandbox option. In this case, the client will authenticate as device 4711 of the DEFAULT_TENANT.
The following command will start receiving commands for the authenticated device (4711) and automatically send a
response using status code 204:
# at the hono-cli/amqp-device> prompt
sub -s 204
The sub command also accepts a -d option. This can be used by gateway devices to start receiving commands for
one of the devices that it may act on behalf of.
When a command is received, the client will print a line to the console’s standard output consisting of:
- the type of command received (
owfor a one-way andreqfor a request/response command) - the identifier of the device that the command is targeted at (with
-representing the authenticated device) - the name of the command
- the media type describing the command’s payload
- the payload of the command
req - setColor application/json {"r": 128,"g": 100,"b": 50}
The following command will stop receiving commands again:
# at the hono-cli/amqp> prompt
unsub
With the device subscribed for commands, an application can now send commands to the device. The command line client
can also be used to simulate a business application. For that purpose, open another terminal and run the following
command to send a request-response command to device 4711:
# in directory: hono/cli/target/
java -jar hono-cli-*-exec.jar app --sandbox command req -d 4711 -n setColor --payload '{"r": 128,"g": 100,"b": 50}'
This will result in the device’s response being printed to the console:
res 4711 204 text/plain automatic response to [setColor] command
It is also possible to send a one-way command:
# in directory: hono/cli/target/
java -jar hono-cli-*-exec.jar app --sandbox command ow -d 4711 -n setVolume --payload '{"level": 50}'
Downstream Meta Data
The adapter includes the following meta data in messages being sent downstream:
| Name | Type | Description |
|---|---|---|
| orig_adapter | string | Contains the adapter’s type name which can be used by downstream consumers to determine the protocol adapter that the message has been received over. The AMQP adapter’s type name is hono-amqp. |
| orig_address | string | Contains the AMQP target address that the device has used to send the data. |
The adapter also considers defaults registered for the device at either the tenant or the device level. The values of the default properties are determined as follows:
- If the message already contains a non-empty property of the same name, its value remains unchanged.
- Otherwise, if a default property of the same name is defined in the device’s registration information, that value is used.
- Otherwise, if a default property of the same name is defined for the tenant that the device belongs to, that value is used.
Note that of the standard AMQP 1.0 message properties only the content-type and ttl can be set this way to a default value.
Event Message Time-to-live
Events published by devices will usually be persisted by the messaging infrastructure in order to support deferred delivery to downstream consumers.
In most cases, the messaging infrastructure can be configured with a maximum time-to-live to apply to the events so that the events will be removed from the persistent store if no consumer has attached to receive the event before the message expires.
In order to support environments where the messaging infrastructure cannot be configured accordingly, the protocol adapter supports setting a downstream event message’s ttl property based on the default ttl and max-ttl values configured for a tenant/device as described in the Tenant API.
Tenant specific Configuration
The adapter uses the Tenant API to retrieve tenant specific
configuration for adapter type hono-amqp. The following properties are (currently) supported:
| Name | Type | Default Value | Description |
|---|---|---|---|
| enabled | boolean | true |
If set to false the adapter will reject all data from devices belonging to the tenant and respond with a amqp:unauthorized-access as the error condition value for rejecting the message. |