Tag Security in MQTT Engine

Sean_Glantz · January 30, 2025, 7:45pm

Our project has multiple edge devices with common UDTs publishing to our cloud gateway running MQTT distributor and engine. Our clients on the edge access the project using perspective.

I want to restrict our clients to only read tags from their edge device based on tag path, but I am not able to edit tag security on tags generated by MQTT engine. What is the best approach in this scenario?

We are using this project for monitoring only, so there are no outbound tag writes from cloud to edge.

Benjamin_Furlani · January 30, 2025, 8:15pm

In a similar scenario we have a multi-tenant gateway and we just have roles that are the name of the customer topic that comes in. This allows us to make the queries based on the path to their history provider etc.

You control the visuals so if you have a tag selector for instance you can tell it what the root tag path you're looking in is.