Open zbeech opened 8 years ago
We still need to update the subscriptions (removed unauthorized subscribers) when the protected-topics file is changed.
If an unauthorized agent calls pubsub.subscribe
it will silently fail. A jsonrpc.UNAUTHORIZED
exception is raised, but the agent won't see it because pubsub.subscribe
runs in its own greenlet.
I have been able to restrict who can subscribe based upon using an XPUB/XSUB device socket. This does not in fact do it for specific topics, but the whole bus.
Restricting who can subscribe is going to be different path than publish restrictions. @shwethanidd @zbeech and @craig8 need to collaborate on this to get it done during the implementation of faster pubsub in 4.1
related to #321