rdhabalia commented on issue #6122: [pulsar-admin] allow tenant admin to manage subscription permission URL: https://github.com/apache/pulsar/pull/6122#issuecomment-581276107 > From security point of view, this endpoint was only allowed for super-user but this change relaxes the permissions to a tenant admin. This api was only accessed by super-admin because of concern of increasing metadata footprint size and I had added it into the code-comment which has been removed in this PR. also, it will not create any security concern because this will allow tenant to grant permission and this semantics already exists eg: tenant grants users produce/consume messages, tenant increase quota, etc.. tenant is already allowed to manage property/namespace permission. so, It should not create red flag for any enterprises and I can agree if there will be or if any else also suggests same.
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services
