[ https://issues.apache.org/jira/browse/CASSANDRA-12988?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17416761#comment-17416761 ]
Jeremiah Jordan edited comment on CASSANDRA-12988 at 9/17/21, 3:31 PM: ----------------------------------------------------------------------- I have not gone through the implications of this change extensively, but from past experience with auth bootstrapping and multiple DC's, I do not know changing away from QUORUM for the default user is safe. Because of the way people bring up new datacenter with bootstrap off, combined with the way we auto create the "cassandra" users, I do not think it is safe to stop using QUORUM for that user. A read at LOCAL_QUORUM will not find any users and the nodes would then "create" the "cassandra" user, possibly over writing or bringing that user back if it removed. I hate the fact that the "cassandra" user uses QUORUM as much as the next person, but until we have a way to create that user which is not "try to do it automatically during first startup", or we don't have "auto bootstrap:false" as an option, I think the use of QUORUM is actually needed. was (Author: jjordan): I have not gone through the implications of this change extensively, but from past experience with auth bootstrapping and multiple DC's, I do not know changing away from QUORUM is safe. Because of the way people bring up new datacenter with bootstrap off, combined with the way we auto create the "cassandra" users, I do not think it is safe to stop using QUORUM for that user. A read at LOCAL_QUORUM will not find any users and the nodes would then "create" the "cassandra" user, possibly over writing or bringing that user back if it removed. I hate the fact that the "cassandra" user uses QUORUM as much as the next person, but until we have a way to create that user which is not "try to do it automatically during first startup", or we don't have "auto bootstrap:false" as an option, I think the use of QUORUM is actually needed. > make the consistency level for user-level auth reads and writes configurable > ---------------------------------------------------------------------------- > > Key: CASSANDRA-12988 > URL: https://issues.apache.org/jira/browse/CASSANDRA-12988 > Project: Cassandra > Issue Type: Improvement > Components: Legacy/Core > Reporter: Jason Brown > Assignee: Josh McKenzie > Priority: Low > Fix For: 4.x > > > Most reads for the auth-related tables execute at {{LOCAL_ONE}}. We'd like to > make it configurable, with the default still being {{LOCAL_ONE}}. -- This message was sent by Atlassian Jira (v8.3.4#803005) --------------------------------------------------------------------- To unsubscribe, e-mail: commits-unsubscr...@cassandra.apache.org For additional commands, e-mail: commits-h...@cassandra.apache.org