Push queues are the all the hype at the moment. However, I have not seen much discussion around securing them. Thats likely do the the simplicity of securing the receiving route, but either way…lets cover it.
There are two basic ways to secure the receiving route.
- SSL – Use a security certificate to secure the connection.
- Token and Route Filter – Build a route filter that requires a valid token.
Route Filter & Route Example
Configure the subscriber URL on iron.io to look something like the following. In this example the URL query string is set to the value of the iron.io token in app/config/queue.php.