mattisonchao
commented
2 years ago Great work @Technoboy-
I think some permissions like the following are used to restrict client users.
produce, consume, source, sink, function, package
But currently, we don't have any fine-grained permissions to restrict admin. (seems to be half done)
So, I think we should clearly list the permissions of admin and implement related logic like PIP-49
I'm not very sure about there, Please let me know what you think.
github-actions[bot]
Motivation
As https://github.com/apache/pulsar/issues/14191 described, users may get confused about the current permission. First, we only define the below actions in the grant-permission interface:
Though we grant all the actions to some roles like below (
myuseris not admin, only a normal user):But when we list topics under a namespace:
We will get the below error message :
After https://github.com/apache/pulsar/pull/14638, the user could get a better message :
So what is
GET_BUNDLEmean? And how to grant this permission? No interface and no docs were mentioned about this. After diving into the codes here : https://github.com/apache/pulsar/blob/4910519eb5c20249d982cab40813af3e870e4f90/pulsar-broker-common/src/main/java/org/apache/pulsar/broker/authorization/PulsarAuthorizationProvider.java#L564-L607 We can see from line-572, if the user role is not admin, it can't have the GET_BUNDLE permission. But here, areoperations, notactionsdefined in the grant interface. So, what is the relationship betweenoperationsandactions? No documentations.Goal
Check up the existing permission logic, clarify the relationship between action and operation, and give detailed documentation.