ACL in Azure Service Bus

bidyut 116 Reputation points
2021-08-03T07:28:03.9+00:00

Hi, Is there a way applications can be given read access at the below levels.
i. Service Bus Topic : So that application can read from one topic of a Bus but not from the other topics from the same bus.
ii.Topic Subscription : So that application can read from one subscription of a Topic but not from other subscriptions from the same topic.

We have these questions in context of data loss due to unwanted read & complete by unwanted applications who have access at Service Bus level.

Azure Service Bus
Azure Service Bus
An Azure service that provides cloud messaging as a service and hybrid integration.
700 questions
0 comments No comments
{count} votes

1 additional answer

Sort by: Most helpful
  1. MayankBargali-MSFT 70,941 Reputation points Moderator
    2021-08-03T07:58:53.247+00:00

    @bidyut Currently, you can only use namespace and entity level (queue/topic) for authentication and authorization. Unfortunately you cannot provide the access at the topic subscription level.

    Service Bus Topic : So that application can read from one topic of a Bus but not from the other topics from the same bus.
    You cannot read message from topic. The messages are always read from subscription level in case of topic-subscription. So if you want your application to send messages to only one topic then you can use entity level (i.e. topic level) access keys with the send permission by creating the new shared access policy for your different application.

    120124-image.png

    Topic Subscription : So that application can read from one subscription of a Topic but not from other subscriptions from the same topic.
    Currently you cannot specify the access at the subscription level.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.