Github user afine commented on a diff in the pull request:
https://github.com/apache/zookeeper/pull/182#discussion_r104770508
--- Diff: src/docs/src/documentation/content/xdocs/zookeeperProgrammers.xml
---
@@ -899,9 +899,16 @@
single id, <emphasis>anyone</emphasis>, that represents
anyone.</para></listitem>
- <listitem><para><emphasis role="bold">auth</emphasis> doesn't
- use any id, represents any authenticated
- user.</para></listitem>
+ <listitem><para><emphasis role="bold">auth</emphasis> is a special
+ scheme which ignores any provided ID and instead uses the current
user,
+ credentials, and scheme. Any ID (whether, 'user' like with SASL
+ authentication or 'user:password' like with DIGEST authentication)
provided is ignored
+ by the ZooKeeper server when persisting the ACL. However, the ID
must be
+ provided in the ACL because the ACL must match the form
'scheme:id:perms'.
+ This scheme is provided as a convenience as it is a common
use-case for
+ a client to create a znode and then restrict access to that znode
to only that client.
--- End diff --
perhaps "only that user" would be clearer?
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
