zerodds-bridge-security
Layer 5 — Bridges (substrate). Shared security layer for all ZeroDDS bridge daemons.
- Source: crates/bridge-security
- API docs: docs.rs/zerodds-bridge-security
zerodds-bridge-security bundles three reusable building blocks
for the six ZeroDDS bridge daemons (ws / mqtt / coap / amqp / grpc
/ corba): transport-layer security (TLS) based on rustls 0.23,
auth modes (none|bearer|jwt|mtls|sasl), and topic ACL with wildcard
and group matching. forbid(unsafe_code).
Spec anchors
- ZeroDDS Bridge Spec 1.0 §7.1 — TLS.
- ZeroDDS Bridge Spec 1.0 §7.2 — auth modes.
- ZeroDDS Bridge Spec 1.0 §7.3 — topic ACL.
Quickstart
use zerodds_bridge_security::{Acl, AclOp, AuthSubject};
let subj = AuthSubject::new("alice").with_group("publishers");
let acl = Acl::allow_all();
let _allowed = acl.check(&subj, AclOp::Write, "/topics/trade");Feature flags
| Feature | Default | Purpose |
|---|---|---|
std |
✅ | Required (rustls 0.23 needs std). |
Tests + status
- 42 unit + 1 e2e (TLS handshake against an rcgen self-signed cert) = 43 tests green.
- CONNECTED in all six bridge daemons (ws / mqtt / coap / amqp /
grpc / corba) via the respective
daemonfeature.
zerodds-bridge-security
Layer 5 — Bridges (Substrat). Gemeinsamer Security-Layer fuer alle ZeroDDS Bridge-Daemons.
- Quelle: crates/bridge-security
- API-Docs: docs.rs/zerodds-bridge-security
zerodds-bridge-security buendelt drei wiederverwendbare Bausteine
fuer die sechs ZeroDDS Bridge-Daemons (ws / mqtt / coap / amqp / grpc
/ corba): Transport-Layer-Security (TLS) auf Basis von rustls 0.23,
Auth-Modes (none|bearer|jwt|mtls|sasl), und Topic-ACL mit Wildcard-
und Group-Matching. forbid(unsafe_code).
Spec-Anker
- ZeroDDS Bridge-Spec 1.0 §7.1 — TLS.
- ZeroDDS Bridge-Spec 1.0 §7.2 — Auth-Modes.
- ZeroDDS Bridge-Spec 1.0 §7.3 — Topic-ACL.
Quickstart
use zerodds_bridge_security::{Acl, AclOp, AuthSubject};
let subj = AuthSubject::new("alice").with_group("publishers");
let acl = Acl::allow_all();
let _allowed = acl.check(&subj, AclOp::Write, "/topics/trade");Feature-Flags
| Feature | Default | Zweck |
|---|---|---|
std |
✅ | Pflicht (rustls 0.23 braucht std). |
Tests + Status
- 42 unit + 1 e2e (TLS-Handshake gegen rcgen-Self-Signed-Cert) = 43 Tests gruen.
- CONNECTED in allen sechs Bridge-Daemons (ws / mqtt / coap / amqp /
grpc / corba) ueber das jeweilige
daemon-Feature.