Hi Roger, If we are changing logging level for successful SASL authentications in the broker, we should probably do the same for SSL too. Since KIP-188 proposes to add new metrics for successful and failed authentications which may be more useful for monitoring, do we really need info-level logging for authentication? At the moment, there don't seem to be any per-connection informational messages at info-level, but if you think it is useful, we could do this in a separate JIRA. Let me know what you think.
On Tue, Aug 29, 2017 at 1:09 PM, Roger Hoover <roger.hoo...@gmail.com> wrote: > Just re-read the KIP and was wondering if you think INFO would be ok for > logging successful authentications? They should be relatively infrequent. > > On Tue, Aug 29, 2017 at 9:54 AM, Roger Hoover <roger.hoo...@gmail.com> > wrote: > > > +1 (non-binding). Thanks, Rajini > > > > On Tue, Aug 29, 2017 at 2:10 AM, Ismael Juma <ism...@juma.me.uk> wrote: > > > >> Thanks for the KIP, +1 (binding) from me. > >> > >> Ismael > >> > >> On Thu, Aug 24, 2017 at 6:29 PM, Rajini Sivaram < > rajinisiva...@gmail.com> > >> wrote: > >> > >> > Hi all, > >> > > >> > I would like to start vote on KIP-152 to improve diagnostics of > >> > authentication failures and to update clients to treat authentication > >> > failures as fatal exceptions rather than transient errors: > >> > https://cwiki.apache.org/confluence/display/KAFKA/KIP- > >> > 152+-+Improve+diagnostics+for+SASL+authentication+failures > >> > > >> > Thank you... > >> > > >> > Rajini > >> > > >> > > > > >
