On 16/10/2019 11:36, Dweep Sharma wrote:
I will look into websocket API.
Since this is on JS/browser, is there anything that can be done for
security
Pulsar has quite a comprehensive
<https://pulsar.apache.org/docs/en/security-overview/> set of options
for authentication and access control, but I don't know if these are
applied to websockets connections - I'll let someone else answer that.
At worst I think you could use a reverse proxy frontend that does its
own authentication - e.g. nginx
<https://www.nginx.com/blog/websocket-nginx/>, apache
<https://www.happyassassin.net/2018/11/23/reverse-proxying-websockets-with-apache-a-generic-approach-that-works-even-with-firefox/>.
