Hello,
We presently have distributed External Workers, with some under our team’s control and others not, polling against specific topics. All these workers are members of a dedicated AD group that provides access to the REST API.
The current workers are involved in performing relatively common tasks utilized in multiple process definitions. We are currently developing a worker that should only be used by a single process definition.
However, we’ve identified a potential security issue if a worker is altered and begins polling a topic it shouldn’t. Some of the variables within a task may contain sensitive information, and access should be restricted to a specific worker (svc-account).
Is it feasible to limit access to a specific topic?
Our authentication methods include basic auth, LDAP, and we operate within a single tenant in Camunda.