You are viewing a plain text version of this content. The canonical link for it is here.

Posted to jira@kafka.apache.org by "Sagar Rao (Jira)" <ji...@apache.org> on 2021/02/26 07:46:00 UTC

[jira] [Commented] (KAFKA-12355) Consider inter-broker authentication error handling

    [ https://issues.apache.org/jira/browse/KAFKA-12355?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17291450#comment-17291450 ] 

Sagar Rao commented on KAFKA-12355:
-----------------------------------

hi [~hachikuji], is this something i can pick up?

> Consider inter-broker authentication error handling
> ---------------------------------------------------
>
>                 Key: KAFKA-12355
>                 URL: https://issues.apache.org/jira/browse/KAFKA-12355
>             Project: Kafka
>          Issue Type: Improvement
>            Reporter: Jason Gustafson
>            Priority: Major
>
> Currently authentication errors between brokers are generally considered retriable. The broker will log an error, but continue trying to reach the other broker. This could be improved. 
> For example, authentication errors (specifically from the broker to controller in KIP-500) should probably be considered fatal during some window during initialization. This makes it easy for users to detect problems quickly. 
> On the other hand, if a broker has been running for some time, we probably do not want to fail it on the first authentication failure. If a user had added a misconfigured controller to the cluster, it could end up taking down the whole cluster through authentication failures. 



--
This message was sent by Atlassian Jira
(v8.3.4#803005)