Jennifer88huang commented on a change in pull request #5201: [Issue 5050][Docs] Adjust the content structure of the security chapter URL: https://github.com/apache/pulsar/pull/5201#discussion_r325046390
########## File path: site2/docs/security-overview.md ########## @@ -10,26 +10,27 @@ By default, Pulsar configures no encryption, authentication, or authorization. A Pulsar supports a pluggable authentication mechanism. And Pulsar clients use this mechanism to authenticate with brokers and proxies. You can also configure Pulsar to support multiple authentication sources. -You'd better secure the service components in your Apache Pulsar deployment. +You had better secure the service components in your Apache Pulsar deployment. -## Role Tokens +## Role tokens -In Pulsar, a *role* is a string, like `admin` or `app1`, which can represent one or more clients. You can use roles to control permission for clients to produce or consume from certain topics, administer the configuration for tenants, and so on. +In Pulsar, a *role* is a string, like `admin` or `app1`, which can represent a single client or multiple clients. You can use roles to control permission for clients to produce or consume from certain topics, administer the configuration for tenants, and so on. -Apache Pulsar uses the [Authentication Provider](#authentication-providers) to establish the identity of a client and then assign a *role token* to that client. This role token is then used for [Authorization and ACLs](security-authorization.md) to determine what the client is authorized to do. +Apache Pulsar uses a [Authentication Provider](#authentication-providers) to establish the identity of a client and then assign a *role token* to that client. This role token is then used for [Authorization and ACLs](security-authorization.md) to determine what the client is authorized to do. -## Authentication Providers +## Authentication providers Currently Pulsar supports the following authentication providers: - [TLS Authentication](security-tls-authentication.md) - [Athenz](security-athenz.md) - [Kerberos](security-kerberos.md) -- JSON Web Token Authentication +- [JSON Web Token Authentication](security-jwt.md) ## Contents Review comment: Why should we add those lists here? ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org With regards, Apache Git Services