[
https://issues.apache.org/jira/browse/ZOOKEEPER-1885?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Behar Veliqi resolved ZOOKEEPER-1885.
-------------------------------------
Resolution: Not A Problem
> Znodes deletable by anyone without having the rights to do so
> -------------------------------------------------------------
>
> Key: ZOOKEEPER-1885
> URL: https://issues.apache.org/jira/browse/ZOOKEEPER-1885
> Project: ZooKeeper
> Issue Type: Bug
> Affects Versions: 3.4.5
> Environment: Ubuntu 12.04 LTS 64-bit
> Reporter: Behar Veliqi
>
> Hi,
> I'm not really sure if this is a bug or a misunderstanding on my part, but I
> have the problem that, when I create a znode with an ACL as follows:
> {noformat}
> [zk: localhost:2181(CONNECTED) 60] create /anode "somecontent"
> digest:'user:IAEttLCxci/qWhKN2QJ6u1nrQgw=':cdrwa
> Created /anode
> [zk: localhost:2181(CONNECTED) 61] getAcl /anode
>
> 'digest,''user:IAEttLCxci/qWhKN2QJ6u1nrQgw='
> : cdrwa
> {noformat}
> I am not able to read or update the content of the node, as it should be:
> {noformat}
> [zk: localhost:2181(CONNECTED) 62] get /anode
> Authentication is not valid : /anode
> [zk: localhost:2181(CONNECTED) 63] set /anode "update"
>
> Authentication is not valid : /anode
> {noformat}
> But everyone without being authenticated can delete the node:
> {noformat}
> [zk: localhost:2181(CONNECTED) 64] delete /anode
>
> [zk: localhost:2181(CONNECTED) 65] get /anode
> Node does not exist: /anode
> {noformat}
> Is this a bug or is there a way to set the ACL so that only the user having
> the credentials can delete the znode?
--
This message was sent by Atlassian JIRA
(v6.1.5#6160)
