Halaman utama Jelajahi Bantuan
Masuk
kennyh
/
emqx4.3
1
0
Fork 0
Berkas Masalah 0 Tarik Permintaan 0 Wiki
Pohon: 56d7b3deb1
Ranting Tag
emqx4.3
/
apps
/
emqx_auth_pgsql
/
etc
/
emqx_auth_pgsql.conf

emqx_auth_pgsql.conf 2.3 KB
Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110 
  1. ##--------------------------------------------------------------------
    2. 

  2. ## PostgreSQL Auth/ACL Plugin
    3. 

  3. ##--------------------------------------------------------------------
    4. 

  4. 

  5. ## PostgreSQL server address.
    6. 

  6. ##
    7. 

  7. ## Value: Port | IP:Port
    8. 

  8. ##
    9. 

  9. ## Examples: 5432, 127.0.0.1:5432, localhost:5432
    10. 

  10. auth.pgsql.server = 127.0.0.1:5432
    11. 

  11. 

  12. ## PostgreSQL pool size.
    13. 

  13. ##
    14. 

  14. ## Value: Number
    15. 

  15. auth.pgsql.pool = 8
    16. 

  16. 

  17. ## PostgreSQL username.
    18. 

  18. ##
    19. 

  19. ## Value: String
    20. 

  20. auth.pgsql.username = root
    21. 

  21. 

  22. ## PostgreSQL password.
    23. 

  23. ##
    24. 

  24. ## Value: String
    25. 

  25. ## auth.pgsql.password =
    26. 

  26. 

  27. ## PostgreSQL database.
    28. 

  28. ##
    29. 

  29. ## Value: String
    30. 

  30. auth.pgsql.database = mqtt
    31. 

  31. 

  32. ## PostgreSQL database encoding.
    33. 

  33. ##
    34. 

  34. ## Value: String
    35. 

  35. auth.pgsql.encoding = utf8
    36. 

  36. 

  37. ## Whether to enable SSL connection.
    38. 

  38. ##
    39. 

  39. ## Value: true | false
    40. 

  40. auth.pgsql.ssl = false
    41. 

  41. 

  42. ## SSL keyfile.
    43. 

  43. ##
    44. 

  44. ## Value: File
    45. 

  45. ## auth.pgsql.ssl_opts.keyfile =
    46. 

  46. 

  47. ## SSL certfile.
    48. 

  48. ##
    49. 

  49. ## Value: File
    50. 

  50. ## auth.pgsql.ssl_opts.certfile =
    51. 

  51. 

  52. ## SSL cacertfile.
    53. 

  53. ##
    54. 

  54. ## Value: File
    55. 

  55. ## auth.pgsql.ssl_opts.cacertfile =
    56. 

  56. 

  57. ## Authentication query.
    58. 

  58. ##
    59. 

  59. ## Value: SQL
    60. 

  60. ##
    61. 

  61. ## Variables:
    62. 

  62. ##  - %u: username
    63. 

  63. ##  - %c: clientid
    64. 

  64. ##  - %C: common name of client TLS cert
    65. 

  65. ##  - %d: subject of client TLS cert
    66. 

  66. ##
    67. 

  67. auth.pgsql.auth_query = select password from mqtt_user where username = '%u' limit 1
    68. 

  68. 

  69. ## Password hash.
    70. 

  70. ##
    71. 

  71. ## Value: plain | md5 | sha | sha256 | bcrypt
    72. 

  72. auth.pgsql.password_hash = sha256
    73. 

  73. 

  74. ## sha256 with salt prefix
    75. 

  75. ## auth.pgsql.password_hash = salt,sha256
    76. 

  76. 

  77. ## sha256 with salt suffix
    78. 

  78. ## auth.pgsql.password_hash = sha256,salt
    79. 

  79. 

  80. ## bcrypt with salt prefix
    81. 

  81. ## auth.pgsql.password_hash = salt,bcrypt
    82. 

  82. 

  83. ## pbkdf2 with macfun iterations dklen
    84. 

  84. ## macfun: md4, md5, ripemd160, sha, sha224, sha256, sha384, sha512
    85. 

  85. ## auth.pgsql.password_hash = pbkdf2,sha256,1000,20
    86. 

  86. 

  87. ## Superuser query.
    88. 

  88. ##
    89. 

  89. ## Value: SQL
    90. 

  90. ##
    91. 

  91. ## Variables:
    92. 

  92. ##  - %u: username
    93. 

  93. ##  - %c: clientid
    94. 

  94. ##  - %C: common name of client TLS cert
    95. 

  95. ##  - %d: subject of client TLS cert
    96. 

  96. ##
    97. 

  97. auth.pgsql.super_query = select is_superuser from mqtt_user where username = '%u' limit 1
    98. 

  98. 

  99. ## ACL query. Comment this query, the ACL will be disabled.
    100. 

  100. ##
    101. 

  101. ## Value: SQL
    102. 

  102. ##
    103. 

  103. ## Variables:
    104. 

  104. ##  - %a: ipaddress
    105. 

  105. ##  - %u: username
    106. 

  106. ##  - %c: clientid
    107. 

  107. ##
    108. 

  108. ## Note: You can add the 'ORDER BY' statement to control the rules match order
    109. 

  109. auth.pgsql.acl_query = select allow, ipaddr, username, clientid, access, topic from mqtt_acl where ipaddr = '%a' or username = '%u' or username = '$all' or clientid = '%c'
    110. 

  110.