Design of authentication mechanism

# Specification
[3 MQTT Control Packets](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901032)
├ [3.1 CONNECT – Connection Request](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901033)
│├ [3.1.2 CONNECT Variable Header](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901035)
││├ [3.1.2.8 User Name Flag](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901043)
││├ [3.1.2.9 Password Flag](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901044)
││└ [3.1.2.11 CONNECT Properties](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901046)
││&nbsp;&nbsp;&nbsp;&nbsp;├ [3.1.2.11.9 Authentication Method](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901055)
││&nbsp;&nbsp;&nbsp;&nbsp;└ [3.1.2.11.10 Authentication Data](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901056)
│└ [3.1.3 CONNECT Payload](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901058)
│&nbsp;&nbsp;&nbsp;&nbsp;├ [3.1.3.5 User Name](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901071)
│&nbsp;&nbsp;&nbsp;&nbsp;└ [3.1.3.6 Password](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901072)
└ [3.2 CONNACK – Connect acknowledgement](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901074)
&nbsp;&nbsp;&nbsp;&nbsp;└ [3.2.2 CONNACK Variable Header](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901076)
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;├ [3.2.2.3 CONNACK Properties](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901080)
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;│├ [3.2.2.3.17 Authentication Method](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901097)
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;│└ [3.2.2.3.18 Authentication Data](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901098)
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;└ [3.15 AUTH – Authentication exchange](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901217)

[5.4.1 Authentication of Clients by the Server](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#_Toc3901266)
> The CONNECT packet contains User Name and Password fields. Implementations can choose how to make use of the content of these fields. They may provide their own authentication mechanism, use an external authentication system such as LDAP [[RFC4511]](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#RFC4511) or OAuth [[RFC6749]](https://docs.oasis-open.org/mqtt/mqtt/v5.0/os/mqtt-v5.0-os.html#RFC6749) tokens, or leverage operating system authentication mechanisms.

# HiveMQ Blog

- [Authentication with username and password](https://www.hivemq.com/blog/mqtt-security-fundamentals-authentication-username-password/)
- [Advanced Authentication Mechanisms](https://www.hivemq.com/blog/mqtt-security-fundamentals-advanced-authentication-mechanisms/)
- [X509 Client Certificate Authentication](https://www.hivemq.com/blog/mqtt-security-fundamentals-x509-client-certificate-authentication/)
- [OAuth 2.0 & MQTT](https://www.hivemq.com/blog/mqtt-security-fundamentals-oauth-2-0-mqtt/)

# EMQX Documentation 

https://docs.emqx.com/en/emqx/latest/access-control/authn/authn.html

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Design of authentication mechanism #67

Specification

HiveMQ Blog

EMQX Documentation

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Design of authentication mechanism #67

Description

Specification

HiveMQ Blog

EMQX Documentation

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions