thingsboard / tbmq

Open-source, scalable, and fault-tolerant MQTT broker able to handle 4M+ concurrent client connections, supporting at least 3M messages per second throughput per single cluster node with low latency delivery. The cluster mode supports more than 100M concurrently connected clients.
https://thingsboard.io/products/mqtt-broker/
Apache License 2.0
582 stars 49 forks source link

[Feature Request] #55

Open DavidHill0809 opened 1 year ago

DavidHill0809 commented 1 year ago

Is your feature request related to a problem? Please describe. No it is just an addition to the Authorisation scheme in the device config.

Describe the solution you'd like We have a huge number of devices to configure on TBMQ and would like to create common Authorisation maps per device group. Would it be possible to make "Device Profiles" like Thingsboard does?

Describe alternatives you've considered Creating individual configurations but this will not scale well if changes need to be made with large numbers of devices.

Additional context N/A

dmytro-landiak commented 1 year ago

hi @DavidHill0809,

so basically you would like to have the possibility to configure matcher regex for Intermediate certificate CN (instead of client's certificate CN) that is common for the specific device group as shown in the screenshot below?

image

Did I understand your request correctly?

I assume you can not use some client certificate CN matcher regex that would be applied for many devices from the same group? image

DavidHill0809 commented 1 year ago

Hi Dima,

No, I don't think that is what I am asking. Let me try to explain a bit better:

I hope this explains better. Regards, David

From: Dima Landiak @.> Sent: Thursday, July 27, 2023 9:32 AM To: thingsboard/tbmq @.> Cc: David Hill @.>; Mention @.> Subject: Re: [thingsboard/tbmq] [Feature Request] (Issue #55)

Caution: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know that the content is safe. Use the "Report Phishing" button if you suspect the email is suspicious.

hi @DavidHill0809https://github.com/DavidHill0809,

so basically you would like to have the possibility to configure matcher regex for Intermediate certificate CN (instead of client's certificate CN) that is common for the specific device group as shown in the screenshot below?

[image]https://user-images.githubusercontent.com/10978307/256460348-fcc9e6e7-db91-4968-a387-865d4f2a8804.png

- Reply to this email directly, view it on GitHubhttps://github.com/thingsboard/tbmq/issues/55#issuecomment-1653057752, or unsubscribehttps://github.com/notifications/unsubscribe-auth/AR3RMSF74GGCKHGY5WG742TXSIKOJANCNFSM6AAAAAA2ZTO2S4. You are receiving this because you were mentioned.Message ID: @.**@.>>

dmytro-landiak commented 1 year ago

Thank you for the explanation, I will get back here once we have more information for you regarding the request.