zongtanghu commented on a change in pull request #1149: [issue##1147]Broker will report Exception if open the aclEnable and enableDLegerCommitLog flag at the same time. URL: https://github.com/apache/rocketmq/pull/1149#discussion_r274238693
########## File path: docs/cn/acl/user_guide.md ########## @@ -75,8 +75,10 @@ Broker端对权限的校验逻辑主要分为以下几步: ## 5. 热加载修改后权限控制定义 RocketrMQ的权限控制存储的默认实现是基于yml配置文件。用户可以动态修改权限控制定义的属性,而不需重新启动Broker服务节点。 +## 6. 权限控制的使用限制 +(1)如果ACL与高可用部署(Master/Slave架构)同时启用,那么需要在Broker Master节点的distribution/conf/plain_acl.yml配置文件中 +设置全局白名单信息,即为将Slave节点的ip地址设置至Master节点plain_acl.yml配置文件的全局白名单中。 - - - +(2)如果ACL与高可用部署(多副本Dledger架构)同时启用,由于出现节点宕机时,Dledger Group组内会自动选主,那么就需要将Dledger Group组 +内所有Broker节点的plain_acl.yml配置文件的白名单设置所有Broker节点的ip地址。 Review comment: Okay.I write this notice. ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services
