Chris, I don't understand how the rebalance protocol can be used to give out session tokens in a secure way. It seems that any attacker could just join the group and sign requests with the provided token. Am I missing something?
Ryanne On Wed, Aug 14, 2019, 2:31 PM Chris Egerton <chr...@confluent.io> wrote: > The KIP page can be found at > > https://cwiki.apache.org/confluence/display/KAFKA/KIP-507%3A+Securing+Internal+Connect+REST+Endpoints > , > by the way. Apologies for neglecting to include it in my initial email! > > On Wed, Aug 14, 2019 at 12:29 PM Chris Egerton <chr...@confluent.io> > wrote: > > > Hi all, > > > > I'd like to start discussion on a KIP to secure the internal "POST > > /connectors/<name>/tasks" endpoint for the Connect framework. The > proposed > > changes address a vulnerability in the framework in its current state > that > > allows malicious users to write arbitrary task configurations for > > connectors; it is vital that this issue be addressed in order for any > > Connect cluster to be secure. > > > > Looking forward to your thoughts, > > > > Chris > > >
