Uploaded image for project: 'Kafka'
  1. Kafka
  2. KAFKA-9933

Need doc update on the AclAuthorizer when SASL_SSL is the protocol used.

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Open
    • Priority: Critical
    • Resolution: Unresolved
    • Affects Version/s: 2.4.1
    • Fix Version/s: None
    • Component/s: security
    • Labels:
      None

      Description

      Hello,

      Document on the usage of the authorizer does not speak about the principal being used when the protocol for the listener is chosen as SASL + SSL (SASL_SSL).

      Suppose kerberos and ssl is enabled together, will the authorization be based on the kerberos principal names or on the ssl certificate DN names ?

      There is no document covering this part of the use case.

      This needs information and documentation update.

      Thanks,

      Kaushik.

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              kaushik srinivas kaushik srinivas
            • Votes:
              1 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated: