Behar Veliqi created ZOOKEEPER-1885:
---------------------------------------
Summary: Znodes deletable by anyone without having the rights to
do so
Key: ZOOKEEPER-1885
URL: https://issues.apache.org/jira/browse/ZOOKEEPER-1885
Project: ZooKeeper
Issue Type: Bug
Affects Versions: 3.4.5
Environment: Ubuntu 12.04 LTS 64-bit
Reporter: Behar Veliqi
Hi,
I'm not really sure if this is bug or a misunderstanding on my part, but when I
have the problem that, when a I create a znode with an ACL as follows:
[zk: localhost:2181(CONNECTED) 60] create /anode "somecontent"
digest:'user:IAEttLCxci/qWhKN2QJ6u1nrQgw=':cdrwa
Created /anode
[zk: localhost:2181(CONNECTED) 61] getAcl /anode
'digest,''user:IAEttLCxci/qWhKN2QJ6u1nrQgw='
: cdrwa
I am not able to read or update the content of the node, as it should be.
[zk: localhost:2181(CONNECTED) 62] get /anode
Authentication is not valid : /anode
[zk: localhost:2181(CONNECTED) 63] set /anode "update"
Authentication is not valid : /anode
But everyone without being authenticated can delete the node:
[zk: localhost:2181(CONNECTED) 64] delete /anode
[zk: localhost:2181(CONNECTED) 65] get /anode
Node does not exist: /anode
Is this a bug or is there a way to set the ACL so that only the user having the
credentials can delete the znode somehow?
--
This message was sent by Atlassian JIRA
(v6.1.5#6160)
