0007885: Need a Discussion of How the Role Model is applied to MQTT Brokers

ID	Project	Category	View Status	Date Submitted	Last Update

0007885	10000-002: Security	Spec	public	2022-03-24 07:54	2023-07-25 16:06

Reporter	Randy Armstrong	Assigned To
Priority	normal	Severity	minor	Reproducibility	always
Status	acknowledged	Resolution	open
Product Version	1.05.02

Summary	0007885: Need a Discussion of How the Role Model is applied to MQTT Brokers
Description	MQTT Brokers support the notion of assigning permissions to topics to Roles. Separate from this configuration is the vendor-specific ability to map user credentials onto roles. This nicely aligns to the UA Role Model. A chapter in the MQTT mapping should discuss this model and discuss the authorization requirements that need to be met when using MQTT for OPC UA.
Tags	sg.MQTT

Commit Version
Fix Due Date

Date Modified	Username	Field	Change
2022-03-24 07:54	Randy Armstrong	New Issue
2022-06-21 16:36	Matthias Damm	Assigned To	=> Matthias Damm
2022-06-21 16:36	Matthias Damm	Status	new => assigned
2022-06-21 16:36	Matthias Damm	Relationship added	related to 0008002
2022-06-22 07:50	Matthias Damm	Note Added: 0016967
2022-06-22 07:53	Jim Luth	Project	10000-014: PubSub => 10000-002: Security
2022-06-22 07:53	Jim Luth	Assigned To	Matthias Damm => Paul Hunkar
2023-06-06 18:59	Jim Luth	Target Version	1.05.03 =>
2023-07-25 16:05	Jim Luth	Tag Attached: sg.MQTT
2023-07-25 16:06	Jim Luth	Assigned To	Paul Hunkar =>
2023-07-25 16:06	Jim Luth	Status	assigned => acknowledged

Matthias Damm 2022-06-22 07:50 developer ~0016967	For OPC UA the roles in JWT depend not only on the user but also on the combination of client and server. Not all users get the same role on all servers. This would be similar if you map the role in one OPC UA application to roles on the broker. This is more a conceptual discussion we should line up with other Part 2 overview things.