RobertIndie opened a new pull request #10685: URL: https://github.com/apache/pulsar/pull/10685
### Motivation In https://github.com/apache/pulsar/pull/10375, we add multi roles support for JWT authentication. But the authorization does not support multi roles currently. Only the first one in the roles array will be used during authorization. This PR adds multi roles support for both authentication and authorization. ### Modifications * Change the `AuthenticationState` interface to make it keep an array of principals * Change the authorization logic to do the permission verification over an array of principals iteratively. Return true when the principal has permission, or return false if all principals verified failed. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
