Set access permissions for a topic or service
Hi,
I'm using ROS2 Bouncy.
I would like to set some access permissions for my topics and services. e.g. only node A can publish on this topic; only node B can make requests to this service.
I tried SROS2, which allows to set permissions policies, however i don't know if that's the best solution, since I'm not interested in all the other security mechanisms provided by that tool.
Is it possible to disable encryption and use only the permissions feature of SROS2 ?
Are there any alternatives for setting access permissions ?
EDIT: I found this question about the same issue for ROS1 and some resources mentioning the use of ROSDOMAINID to isolate ros graphs. However I don't think these are valid solutions either for my use case.
Assume that node A publishes to a topic and provides a service to set some internal variables. Node B could be not allowed to access the service, but should be still allowed to subscribe to that topic.
Thanks
Asked by alsora on 2018-12-03 03:02:55 UTC
Comments
Are you actually wanting to disable encryption, or simply the requirement of client certificates to authenticate? I'm fairly certain authentication is required before access control is possible, otherwise it would be trivial to pretend your node was named something else and obtain its permissions.
Asked by kyrofa on 2019-01-09 17:13:50 UTC
Mmm you are right!
I would still to know if it's possible to disable encryption and any other tool which is not necessary for access control.
Asked by alsora on 2019-01-21 09:34:12 UTC