thomaeschen opened a new issue #13766:
URL: https://github.com/apache/pulsar/issues/13766
**Describe the bug**
Since Pulsar 2.9.1, user can produce the message through the Rest API .
After activated the authentication and authorization mechanism(JWT) in the
broker.conf. The system will show the message
{
"reason": "Unauthorized to produce to topic persistent://bi/a/tls with
clientAppId [bi] and authdata
org.apache.pulsar.broker.authentication.AuthenticationDataHttps@a69bf62"
}
**To Reproduce**
Steps to reproduce the behavior:
1. Activate the security in Pulsar with JWT and assign the role in the
tenant
2. Create the topic through the Pulsar manager under the tenant
3. Use Postman to POST the message
4. See error
5. The same token value use the JAVA client and node client could
successfully produce the message
**Expected behavior**
The token we provided in the postman not only do the authentication but
authorization in Pulsar .
**Screenshots**
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
