Uploaded image for project: 'ZooKeeper'
  1. ZooKeeper
  2. ZOOKEEPER-2589

Not able to access znode if IP ACL is set on a znode when zookeeper started in ssl mode

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Open
    • Major
    • Resolution: Unresolved
    • 3.5.1
    • None
    • None
    • None

    Description

      Not able to access znode if IP ACL is set on a znode when zookeeper started in ssl mode.

      Steps to reproduce:-
      1. Start zookeeper in SSL (standalone) mode
      2. Create a znode
      3. set ip ACL and connect the zkCli and try to access, it does not allow.

      [zk: localhost:2181(CONNECTED) 3] setAcl /test ip:127.0.0.1:crdwa
      [zk: localhost:2181(CONNECTED) 5] quit

      >> start the zkCli with 127.0.0.1 and trying access the znode
      [zk: 127.0.0.1:2181(CONNECTED) 0] get -s /test
      Authentication is not valid : /test
      [zk: 127.0.0.1:2181(CONNECTED) 1] getAcl /test
      'ip,'127.0.0.1
      : cdrwa
      [zk: 127.0.0.1:2181(CONNECTED) 2] get /test
      Authentication is not valid : /test

      Attachments

        Activity

          People

            Unassigned Unassigned
            rakeshsingh Rakesh Kumar Singh
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated: