You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@pulsar.apache.org by GitBox <gi...@apache.org> on 2021/12/13 07:24:05 UTC

[GitHub] [pulsar] yuruguo removed a comment on pull request #13157: [Authorization] Converge authz of ns policies from super-user to tenant-administrator

yuruguo removed a comment on pull request #13157:
URL: https://github.com/apache/pulsar/pull/13157#issuecomment-987531379


   > If all consume roles could modify the namespace level subscription-related policies, do it may cause some confusion?
   
   In fact, this problem still exists if the tenant has multiple `admin-roles`, maybe we need to discuss it separately. 
   https://github.com/apache/pulsar/blob/47e4f38f2ed10f9b9492ebeb3e1424da18ab3655/pulsar-client-tools/src/main/java/org/apache/pulsar/admin/cli/CmdTenants.java#L61-L63
   But in terms of the operation permission for subscription-related policies, it should be more reasonable to converge to a role that can `consume` namespace.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@pulsar.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org