hany
commented
8 years ago This is not needed for sensu/sensu#1119 anymore, but is still a very good feature to add as it leverages a security feature of RabbitMQ for free.
Closed hany closed 8 years ago
hany
commented
8 years ago This is not needed for sensu/sensu#1119 anymore, but is still a very good feature to add as it leverages a security feature of RabbitMQ for free.
portertech
commented
8 years ago Closing this PR, as Sensu 0.22.0 includes client signatures :+1: https://github.com/sensu/sensu/blob/master/CHANGELOG.md#0220---2016-01-29
This is the first part in addressing https://github.com/sensu/sensu/issues/1118. This makes use of RabbitMQ's Validated User-ID feature. With this set, all messages will be published with a
user_idattribute set. RabbitMQ will validate that theuser_idmatches the username that was used to authenticate, and reject messages that don't. This is a fairly safe change and probably good practice to have.Feedback welcome.