eolivelli opened a new issue #10505: URL: https://github.com/apache/pulsar/issues/10505
Recently we introduced on master branch (2.8.0-SNAPSHOT) a new API Context.getPulsarAdmin() (and getPulsarAdmin(clustername)). With this API the Function has access to the power of PulsarAdmin, but this is not restricted to the same "tenant" that is running the function. We must limit the scope of this PulsarAdmin in order to be able to access only the resources of the same tenant. Please note that this is still not a security issue report because Pulsar 2.8.0 has not been release yet. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
