7049469289
An update for the security documentation that is part of the CycloneDDS manual: - added openssl commands for creating a set of CA and identity certificates - code fragment for setting security by qos and example of xml security config - commands for signing governance and permissions documents using openssl Signed-off-by: Dennis Potman <dennis.potman@adlinktech.com>
29 lines
1.3 KiB
XML
29 lines
1.3 KiB
XML
<?xml version="1.0" encoding=\"utf-8\"?>
|
|
<dds xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="https://www.omg.org/spec/DDS-SECURITY/20170901/omg_shared_ca_governance.xsd">
|
|
<domain_access_rules>
|
|
<domain_rule>
|
|
<domains>
|
|
<id_range>
|
|
<min>0</min>
|
|
<max>230</max>
|
|
</id_range>
|
|
</domains>
|
|
<allow_unauthenticated_participants>false</allow_unauthenticated_participants>
|
|
<enable_join_access_control>true</enable_join_access_control>
|
|
<discovery_protection_kind>NONE</discovery_protection_kind>
|
|
<liveliness_protection_kind>NONE</liveliness_protection_kind>
|
|
<rtps_protection_kind>NONE</rtps_protection_kind>
|
|
<topic_access_rules>
|
|
<topic_rule>
|
|
<topic_expression>*</topic_expression>
|
|
<enable_discovery_protection>true</enable_discovery_protection>
|
|
<enable_liveliness_protection>true</enable_liveliness_protection>
|
|
<enable_read_access_control>true</enable_read_access_control>
|
|
<enable_write_access_control>true</enable_write_access_control>
|
|
<metadata_protection_kind>SIGN</metadata_protection_kind>
|
|
<data_protection_kind>ENCRYPT</data_protection_kind>
|
|
</topic_rule>
|
|
</topic_access_rules>
|
|
</domain_rule>
|
|
</domain_access_rules>
|
|
</dds>
|