Micro broker clients supply a username and password, which first authenticate the client. An authenticated username then becomes the subject name in terms of authorization and is evaluated against the authorization file of the micro broker (micro-acl.xml
) to see whether the client is permitted to do the requested action.
The details of supplying the username and password vary slightly depending on the version of the client being used (see Configuring micro broker authentication
). A client that does not provide credentials when connecting bypasses the authentication process and the string "anonymous" is assigned as its subject name. The string "anonymous" can be used in the ACL document file to control access permissions just as for authenticated (and thus named) users.
Parent topic: Configuring micro broker authorization: XPD622