You are viewing a plain text version of this content. The canonical link for it is here.

Posted to jira@kafka.apache.org by GitBox <gi...@apache.org> on 2022/11/09 20:25:44 UTC

[GitHub] [kafka] pprovenzano commented on pull request #12838: [DO NOT MERGE] SaslPlainSslEndToEndAuthorizationTest

pprovenzano commented on PR #12838:
URL: https://github.com/apache/kafka/pull/12838#issuecomment-1309335998

   The main focus of these tests is on brokers doing authorization and validating that the client gets (or does not get) access to the topic for various ACLs. So I think that we should not bother to update the CONTROLLER to use something other than PLAINTEXT. That said, for SaslPlainSslEndToEndAuthorizationTest you still need to set a principal so that BROKERS can update the CONTROLLER.
   
   What I have done is set a super user principal which is different from the client and that principal calls the brokers to set ACLs. I believe the BROKER just forwards the request to zookeeper or a CONTROLLER. 
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: jira-unsubscribe@kafka.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org