Steven Lu created KAFKA-9452:
--------------------------------
Summary: Add new cached authorizer:change the dim of cache
Key: KAFKA-9452
URL: https://issues.apache.org/jira/browse/KAFKA-9452
Project: Kafka
Issue Type: Improvement
Components: security
Reporter: Steven Lu
Same like issues https://issues.apache.org/jira/browse/KAFKA-5261 ,
We met the same performance issue which is descripted in the pr
[#3756|https://github.com/apache/kafka/pull/3756] in our production
environment,hence, we make a revision for the mechamisum of authorization, our
revision have such optimizations
1、Build a cache for authorization, which can avoid recomputation of
authorization result. The authorization result will fetch on the result catch
if the same result has been computed rather than compute it again
2、Differ from the pr 3756, when we build the result cache of the authorization,
we take the resource into first consideration. In this way, the authorization
is recomputed only when the authorization are change of specific resource.
Compared to the the frequency of recomputation can be reduced obviously.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
