Bosch IoT Device Management

Authorization for the connection

In Sources and Targets, you can configure who is allowed to read and write messages.

A connection needs at least 1 and may have multiple authorization subjects. The user interface will support you to edit 1 to 9 entries.

The subjects you define here will control which things are able to publish or receive messages through this connection.

  • If the policy of a thing gives this authorization subject from the connection READ permission for a thing, messages from the thing will be sent through the connection.

  • If the policy of a thing gives this authorization subject from the connection WRITE permission for a thing, messages from the connection will be forwarded to the thing.

To distinguish the connection specific authorization subjects from others, the effective authorization subject will be “integration:the-solution-ID-of-this-instance:each-subject-ID”.

The following figure summarizes the concepts described in this section.

images/confluence/download/attachments/1783513469/connection-authorization.png



Find details on our authorization concept at Policy examples.

Both sections Sources and Targets support placeholder which you can use.