This example shows a micro broker ACL file that permits all authenticated users full access to the micro broker (to connect, put to, and get from queues, publish and subscribe to topics, and perform administrative tasks). Anonymous users are denied all access and are not even allowed to connect to the broker.
As described in Configuring micro broker authentication
, a client attempting to connect to a broker without specifying a user name and password is treated as an authenticated user with a user name of "anonymous". This feature is both convenient for administrators who do not wish to take full advantage of the security features of the micro broker and provides compatibility with earlier versions of the broker that did not provide authentication and authorization. Administrators that do wish to implement security are therefore likely to want to deny access to anonymous users.
Parent topic: Micro broker ACL samples
<?xml version="1.0" encoding="UTF-8"?>
<subject name="anonymous" />