THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
Operation | Resource | API |
---|---|---|
CreateTokens | User | createTokens for other users // New |
DescribeTokens | User | describeTokens for others tokens // New |
Describe | DelegationToken | describeTokens for a given tokenId // Existing |
DelegationTokenCommand Changes
...
We will allow kafka-delegation-tokens.sh script with "--create" option to take owner principal from "--owner-principal" option.
...
Code Block | ||
---|---|---|
| ||
>> bin/kafka-acls.sh --authorizer-properties zookeeper.connect=localhost:2181 --add --allow-principal User:tokenRequester --allow-host * --operation CreateTokens --user-usersprincipal "owner1;owner2"" |
Protocol Changes
The version of CreateAcl, DescribeAcl and DeleteAcl will be increased to avoid serialization errors in case of older brokers which can't handle the newly added User resource type.
Proposed Changes
Create/Renew Tokens:
...