[
https://issues.apache.org/jira/browse/KAFKA-10507?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17200172#comment-17200172
]
Jason Gustafson commented on KAFKA-10507:
-----------------------------------------
[~edenhill] It was more of a suggestion. I was thinking to avoid leaking
information prior to authentication. Since librdkafka depends on it, I will
just close this as "won't fix."
> Limit the set of APIs returned in pre-authentication ApiVersions
> -----------------------------------------------------------------
>
> Key: KAFKA-10507
> URL: https://issues.apache.org/jira/browse/KAFKA-10507
> Project: Kafka
> Issue Type: Improvement
> Reporter: Jason Gustafson
> Assignee: David Jacot
> Priority: Major
>
> We use the ApiVersions RPC to check whether the SaslHandshake and
> SaslAuthenticate APIs are supported before authenticating with the broker.
> Currently the response contains all APIs supported by the broker. It seems
> like a good idea to reduce the set of APIs returned at this level to only
> those which are supported prior to authentication.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
