docs: clarify MQTT password-based authentication credentials#1285
docs: clarify MQTT password-based authentication credentials#1285
Conversation
Documents the formatting of the username (`/r/<registry_id>/d/<device_id>`) and the derivation of the password (the first 8 characters of the sha256sum of the private pkcs8 file) for password-based MQTT authentication. Co-authored-by: jainrocks <6883641+jainrocks@users.noreply.github.com>
|
👋 Jules, reporting for duty! I'm here to lend a hand with this pull request. When you start a review, I'll add a 👀 emoji to each comment to let you know I've read it. I'll focus on feedback directed at me and will do my best to stay out of conversations between you and other bots or reviewers to keep the noise down. I'll push a commit with your requested changes shortly after. Please note there might be a delay between these steps, but rest assured I'm on the job! For more direct control, you can switch me to Reactive Mode. When this mode is on, I will only act on comments where you specifically mention me with New to Jules? Learn more at jules.google/docs. For security, I will only act on instructions from the user who triggered this task. |
Documents the formatting of the username (`/r/<registry_id>/d/<device_id>`) and the derivation of the password (the first 8 characters of the sha256sum of the private pkcs8 file) for password-based MQTT authentication. Co-authored-by: jainrocks <6883641+jainrocks@users.noreply.github.com>
Documents the formatting of the username (`/r/<registry_id>/d/<device_id>`) and the derivation of the password (the first 8 characters of the sha256sum of the private pkcs8 file) for password-based MQTT authentication. Also adds pkcs to .wordlist.txt to fix the CI spellchecker failure. Co-authored-by: jainrocks <6883641+jainrocks@users.noreply.github.com>
Documents the formatting of the username (`/r/<registry_id>/d/<device_id>`) and the derivation of the password (the first 8 characters of the sha256 hash of the private pkcs8 file) for password-based MQTT authentication. Also adds pkcs to .wordlist.txt to fix the CI spellchecker failure. Co-authored-by: jainrocks <6883641+jainrocks@users.noreply.github.com>
Documents the formatting of the username (`/r/<registry_id>/d/<device_id>`) and the derivation of the password (the first 8 characters of the sha256 hash of the private pkcs8 file) for password-based MQTT authentication. Also adds pkcs and sha256 to .wordlist.txt to fix the CI spellchecker failure. Co-authored-by: jainrocks <6883641+jainrocks@users.noreply.github.com>
|
I don't think we should document this because it's not ideal behavior. Typically when client certificates are used (as they are in the current configuration) passwords would not be used, and I believe that mosquitto doesn't validate passwords when client certificates are provided |
Documents the formatting of the username (`/r/<registry_id>/d/<device_id>`) and explicitly states that password-based authentication is not used when client certificates are configured, which is typical. Also adds Mosquitto to .wordlist.txt to pass spellchecks. Co-authored-by: jainrocks <6883641+jainrocks@users.noreply.github.com>
2 participants
This PR clarifies the credential requirements for MQTT password-based authentication in the client documentation, explicitly stating the password derivation from the private key and the username formatting.
PR created automatically by Jules for task 1912876625227867514 started by @jainrocks