Link, for convenience: https://cwiki.apache.org/confluence/display/KAFKA/KIP-433%3A+Provide+client+API+version+to+authorizer
I actually prefer the first rejected alternative (add a configuration). While you are right that configuration is inherently less flexible, putting the logic in the authorizer means that an admin that wants to limit the allowed client API versions has to implement an authorizer. This is more challenging than changing a config (and AFAIK, can't be done dynamically - configs can be dynamic and the admin can avoid a restart). Would be interested to hear what others think. Gwen On Fri, Feb 22, 2019 at 2:11 PM Ying Zheng <yi...@uber.com.invalid> wrote: > > -- Gwen Shapira Product Manager | Confluent 650.450.2760 | @gwenshap Follow us: Twitter | blog