Skip to main content

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [mosquitto-dev] ACLs 101.

Hi Paul,

On 10 February 2016 at 10:07, Paul Fremantle <paul.fremantle@xxxxxxxxxx> wrote:
> Andrew
> Can you post a log?

This is really odd. Configure a user in acl.conf and with a password
in passwd, give them access to # and they can publish. Do exactly the
same, albeit using a different username (and matching entry in passwd)
and they cannot. The error in the log is publish denied, so they've
been authenticated fine.

Also right now I can't seem to get anonymous read to work.

** mosquitto.conf:

pid_file /var/run/

persistence true
persistence_location /var/lib/mosquitto/

log_dest file /var/log/mosquitto/mosquitto.log
log_type all

acl_file /etc/mosquitto/acl.conf
password_file /etc/mosquitto/passwd

include_dir /etc/mosquitto/conf.d

** /etc/mosquitto/conf.d/01-default.conf

listener 1883
listener 8883

cafile /etc/mosquitto/chain-ca.pem
certfile /etc/mosquitto/cert.pem
keyfile /etc/mosquitto/privkey.pem

require_certificate false

** /etc/mosquitto/acl.conf:

topic read #

user bob
topic #

I can publish as bob to topic 'test', but if I subscribe anonymous I
don't receive messages — although I do if I subscribe as bob.

Running Ubuntu 14.04 and Mosquitto from the PPA.

ii  libmosquitto1:amd64
1.4.7-0mosquitto1                                   amd64        MQTT
version 3.1/3.1.1 client library
ii  mosquitto-clients
1.4.7-0mosquitto1                                   amd64
Mosquitto command line MQTT clients



Andrew Back
Principal, AB Open Ltd

Back to the top