search

AMRC-FactoryPlus / amrc-connectivity-stack

The AMRC Connectivity Stack (ACS) is an open-source implementation of the AMRC's Factory+ framework
https://factoryplus.app.amrc.co.uk
MIT License
13 stars 2 forks source link

[directory] Dynamic ACLs #186

Open amrc-benmorrow opened 1 year ago

amrc-benmorrow commented 1 year ago

It is not a lot of use a client being able to search for e.g. Temperatures if that client doesn't have permission to read the data.

We need some way of automatically granting certain clients access to device matching certain criteria. To start with I think this wants to be implemented by the Directory automatically adding devices to (Auth service) groups, so clients can then be given access to appropriate groups.

This depends on AMRC-FactoryPlus/amrc-connectivity-stack#188. This could be implemented as a function of the Directory, or as a separate service. Either way the criteria for adding a device to a group needs to be configurable.

amrc-benmorrow commented 1 year ago

ABAC may provide an alternative to this.