shiv4289 commented on pull request #6782:
URL: https://github.com/apache/pulsar/pull/6782#issuecomment-618963236
@rdhabalia @sijie I would like to put on the table why transient was added
in the first place. Flink job manager stores the state of job (including pulsar
client connection) for recovery. If authentication is non-transient, the auth
token would get stored which has 2 implications:
1. This is a red flag from security point of view.
2. If my token supplier rotated the token between last state update and
recovery, flink job will not be able to connect to pulsar.
**I see the current patch keeps Authentication transient . Is this the
final decision then?**
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
