Skip to main content

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
[mosquitto-dev] use full certificate subject as username?


I’m looking into leveraging tis as much as possible for solving the authentication and authorization problem in my mqtt architecture.
Currently the use_identity_as_username option only uses the common name from the certificate as the username.
For authorization purposes other parts of the certificates distinguished name could be helpful as well (e.g. organization, organizational unit...)

Would it maybe feasible to introduce a complementary configuration option like use_subject_as_username?
That way an auth plugin could then make the access control decision based on the full certificate subject.

Just wanted to check if somebody else might think this could be useful.


Back to the top