Re: [PR] [improve][authentication] Pass the authorization when user lookup transactionCoordinator topic [pulsar]

via GitHub Tue, 16 Jul 2024 20:39:10 -0700


thetumbled commented on code in PR #22744:
URL: https://github.com/apache/pulsar/pull/22744#discussion_r1680362085



##########
pulsar-broker-common/src/main/java/org/apache/pulsar/broker/authorization/PulsarAuthorizationProvider.java:
##########
@@ -155,6 +156,9 @@ public CompletableFuture<Boolean> canConsumeAsync(TopicName 
topicName, String ro
     @Override
     public CompletableFuture<Boolean> canLookupAsync(TopicName topicName, 
String role,
             AuthenticationDataSource authenticationData) {
+        if (SystemTopicNames.isTransactionCoordinatorAssign(topicName)) {

Review Comment:
   Do we need to restrict user to use transaction feature by authorizing the 
lookup permission of TC system topic?
   It is weird as there is no official document pointing out this.
   



-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]

Re: [PR] [improve][authentication] Pass the authorization when user lookup transactionCoordinator topic [pulsar]

Reply via email to