Skip to content

Security

Kai Hudalla edited this page Apr 13, 2016 · 3 revisions

Resource Model

Hono exposes several resource endpoints via its external API that are subject to authorization. In particular Hono provides

  • a telemetry ingestion endpoint per device
  • a telemetry consumption endpoint per tenant
  • a command & control endpoint per device
  • a command & control reply endpoint per command source
  • a high-priority message ingestion endpoint per device
  • a high-priority message consumption endpoint per tenant
  • a management endpoint per tenant

Access to all of these resources is constrained to authorized clients only, e.g. a device can only publish telemetry data to the device's telemetry ingestion endpoint but not to endpoints for other devices. Analogously, a business application is authenticates to Hono as a subject belonging to a particular tenant and can then only consume telemetry data sent by devices belonging to that tenant.

Clone this wiki locally