[jira] [Updated] (KAFKA-9933) Need doc update on the AclAuthorizer when SASL_SSL is the protocol used.

kaushik srinivas (Jira) Mon, 04 May 2020 03:08:11 -0700


     [ 
https://issues.apache.org/jira/browse/KAFKA-9933?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


kaushik srinivas updated KAFKA-9933:
------------------------------------
    Issue Type: Bug  (was: Improvement)

> Need doc update on the AclAuthorizer when SASL_SSL is the protocol used.
> ------------------------------------------------------------------------
>
>                 Key: KAFKA-9933
>                 URL: https://issues.apache.org/jira/browse/KAFKA-9933
>             Project: Kafka
>          Issue Type: Bug
>          Components: security
>    Affects Versions: 2.4.1
>            Reporter: kaushik srinivas
>            Priority: Critical
>
> Hello,
> Document on the usage of the authorizer does not speak about the principal 
> being used when the protocol for the listener is chosen as SASL + SSL 
> (SASL_SSL).
> Suppose kerberos and ssl is enabled together, will the authorization be based 
> on the kerberos principal names or on the ssl certificate DN names ?
> There is no document covering this part of the use case.
> This needs information and documentation update.
> Thanks,
> Kaushik.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (KAFKA-9933) Need doc update on the AclAuthorizer when SASL_SSL is the protocol used.

Reply via email to