Log In
Home
01/29/2021
Offline
Hi.
I did not find from the specification any way to manage permissions for MonitoredItem data changes. I also checked the .NET reference implementation but did not find any permission validation in either creating MonitoredItems for data items or when reporting data changes. For events there is ReceiveEvents permission which can be used to manage permissions for event receiving but there doesn’t seem to be anything similar for data changes. So is there any way to manage permissions for data changes?
05/30/2017
Offline
Permissions for data changes are set on the source node.
i.e. a Variable X has the RolePermissions attribute which specifies the permissions granted to Roles. When a Client creates a MonitoredItem for Variable, the Session has Roles associated with and those Roles are used to evaluate the Permissions on the Variable.
If the Session does not have access the MonitoredItem create request make be rejected or the DataChange will be a error like BadUserAccessDenied.
01/29/2021
Offline
Thanks for the answer. I get how the RolePermissions work and how permissions should be evaluated, but which permission bit dictates whether MonitoredItem creation is possible or not? I checked all permission bits from here https://reference.opcfoundatio…../docs/8.55 but none of the permissions mentions anything about MonitoredItems or data change notifications.
05/30/2017
Offline
There is no distinction between Read and Subscribe. If you can Read you can Subscribe.
1 Guest(s)
Usage Policy