Attribute data to a token

reshadp · May 30, 2020, 4:27pm

I am setting up InfluxDB 2.0 on a server which will receive data from multiple untrusted telegraf endpoints.
Each telegraf endpoint will have its own token which can only write to the telegraf_data bucket.

Is there a way to filter what data telegraf is allowed to send back such that the token t1 for host h1 can only write data to the telegraf_bucket with the host field set to h1.
If this is not doable is there a way to attribute data to a token so this can be audited later?

From the documentation the only way I can think of doing something like this would be to create a bucket for each host.

Any help/ideas on this would be very welcome.

Anaisdg · June 1, 2020, 3:41pm

Hello @reshadp,
Yes, you can only scope tokens to specific buckets at the moment. I think higher granularity auth will be provided in the future.
However, you might also be interested in this,

reshadp · June 2, 2020, 3:13am

Hi @Anaisdg,
The naem prefix/suffix and tags are interesting options.
I will check them out.
Looking forward to more granular auth in the future .

system · June 2, 2020, 3:14pm

This topic was automatically closed 60 minutes after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Type of permissions/authorization for token InfluxDB 2 influxdb	0	251	February 15, 2023
Creating a token scoped to a bucket by using the name with the API InfluxDB 2 influxdb	1	319	September 6, 2022
401 Unauthorized access with influxdb_v2 and telegraf InfluxDB 2 influxdb , telegraf	1	1784	May 10, 2022
Bucket_Tag to direct metrics to different buckets Telegraf telegraf	14	5962	April 13, 2021
Import existing tokens InfluxDB 2	6	1725	January 18, 2022

Attribute data to a token

Related topics