[
https://issues.apache.org/jira/browse/KAFKA-3069?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15094375#comment-15094375
]
ASF GitHub Bot commented on KAFKA-3069:
---------------------------------------
Github user asfgit closed the pull request at:
https://github.com/apache/kafka/pull/736
> Fix recursion in ZkSecurityMigrator
> -----------------------------------
>
> Key: KAFKA-3069
> URL: https://issues.apache.org/jira/browse/KAFKA-3069
> Project: Kafka
> Issue Type: Bug
> Components: security
> Affects Versions: 0.9.0.0
> Reporter: Flavio Junqueira
> Assignee: Flavio Junqueira
> Fix For: 0.9.1.0
>
>
> The zk migrator tool recursively sets ACLs starting with the root, which we
> initially assumed was either the root of a dedicated ensemble or a chroot.
> However, there are at least two reasons for not doing it this way. First,
> shared ensembles might not really follow the practice of separating
> applications into branches, essentially creating a chroot for each. Second,
> there are paths we don't want to secure, like the ConsumersPath.
> To fix this, we simply need to set the root ACL separately and start the
> recursion on each of the persistent paths to secure.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
