You are viewing a plain text version of this content. The canonical link for it is here.
Posted to jira@kafka.apache.org by "David Jacot (Jira)" <ji...@apache.org> on 2020/09/21 19:47:00 UTC
[jira] [Commented] (KAFKA-10507) Limit the set of APIs returned in
pre-authentication ApiVersions
[ https://issues.apache.org/jira/browse/KAFKA-10507?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17199628#comment-17199628 ]
David Jacot commented on KAFKA-10507:
-------------------------------------
That would make sense for the Java client cause it sends another ApiVersionsRequest. However, i think that other clients such as librdkafka may expect to get the full list of APIs directly. If I remember correctly, librdkafka sends only one ApiVersionsRequest regardless of the authentication mechanism used.
> Limit the set of APIs returned in pre-authentication ApiVersions
> -----------------------------------------------------------------
>
> Key: KAFKA-10507
> URL: https://issues.apache.org/jira/browse/KAFKA-10507
> Project: Kafka
> Issue Type: Improvement
> Reporter: Jason Gustafson
> Priority: Major
>
> We use the ApiVersions RPC to check whether the SaslHandshake and SaslAuthenticate APIs are supported before authenticating with the broker. Currently the response contains all APIs supported by the broker. It seems like a good idea to reduce the set of APIs returned at this level to only those which are supported prior to authentication.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)