gogrlx/nats-server
1
0
Fork 0
mirror of https://github.com/gogrlx/nats-server.git synced 2026-04-02 03:38:42 -07:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
nats-server/server/configs/reload/authorization_1.conf
Derek Collison b2ec5b3a98 Added more tests, e.g. reload 
Signed-off-by: Derek Collison <derek@nats.io>
2018-11-06 19:58:42 -08:00

39 lines
925 B
Plaintext
Raw Permalink Blame History

listen: 127.0.0.1:-1
authorization {
# Our role based permissions.
# Superuser can do anything.
super_user = {
publish = ">"
subscribe = ">"
}
# Can do requests on foo or bar, and subscribe to anything
# that is a response to an _INBOX.
#
# Notice that authorization filters can be singletons or arrays.
req_pub_user = {
publish = ["req.foo", "req.bar"]
subscribe = "_INBOX.>"
}
# Setup a default user that can subscribe to anything, but has
# no publish capabilities.
default_user = {
subscribe = {
allow: ["PUBLIC.>", "foo.*"]
deny: "foo.bar"
}
}
# Default permissions if none presented. e.g. susan below.
default_permissions: $default_user
# Users listed with persmissions.
users = [
{user: alice, password: foo, permissions: $super_user}
{user: bob, password: bar, permissions: $req_pub_user}
{user: susan, password: baz}
]
}
Reference in New Issue View Git Blame Copy Permalink