merlimat commented on issue #5495: Add a reverse mapping from role to namespaces URL: https://github.com/apache/pulsar/issues/5495#issuecomment-548000052 > roles are stored within ZK as a serialized version of the policies class. That's true for the default implementation, though the AuthZ backend can be (and is in real-life) also pluggable with different implementations. > 'm wondering if we should add a new method to the interface to be sure that all AuthorizationProvider can reverse a role to their associated namespaces. What do you think? That would be requiring to do a scan of the metadata to search for namespaces in which a role has access to. Or maintaining a different mapping, with the trouble of keeping that in sink with the source of truth.
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org With regards, Apache Git Services
