环境信息
- EMQX 版本: 4.4.3 docker免费版
- 操作系统及版本: centeros7
- 其他
问题描述
emqx4.4.3 免费适用版,开启了http远程鉴权,但是通过mqtt客户端测试,错误的账号和密码也可以登录成功!
请问那个免费版稳定一些?公司想试用下功能,后续可能购买!
配置文件及日志
#auth.http.auth_req.url = http://127.0.0.1:80/mqtt/auth
auth.http.auth_req.url = http://10.144.7.27:7091/auth/userEmqx
HTTP Request Method for Auth Request
Value: post | get
auth.http.auth_req.method = post
HTTP Request Headers for Auth Request, Content-Type header is configured by default.
The possible values of the Content-Type header: application/x-www-form-urlencoded, application/json
Examples: auth.http.auth_req.headers.accept = /
auth.http.auth_req.headers.content_type = application/x-www-form-urlencoded
Parameters used to construct the request body or query string parameters
When the request method is GET, these parameters will be converted into query string parameters
When the request method is POST, the final format is determined by content-type
Available Variables:
- %u: username
- %c: clientid
- %a: ipaddress
- %r: protocol
- %P: password
- %p: sockport of server accepted
- %C: common name of client TLS cert
- %d: subject of client TLS cert
Value: =,=,…
auth.http.auth_req.params = clientid=%c,username=%u,password=%P