kafka-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From BigData dev <bigdatadev...@gmail.com>
Subject Re: Reg: Kafka-Acls
Date Thu, 05 May 2016 23:26:11 GMT
Hi,
Thanks for Info.
It worked.
Acls are correctly set, but when i run the producer is throwing error, even
if acl's are correctlt set.

bin/kafka-console-producer.sh --broker-list bdavm1222.svl.ibm.com:6667
--topic permissiontopic --producer.config producer.properties
jj
[2016-05-05 16:02:23,308] WARN Error while fetching metadata with
correlation id 0 : {permissiontopic=TOPIC_AUTHORIZATION_FAILED}
(org.apache.kafka.clients.NetworkClient)
[2016-05-05 16:02:23,309] ERROR Error when sending message to topic
permissiontopic with key: null, value: 2 bytes with error: Not authorized
to access topics: [permissiontopic]
(org.apache.kafka.clients.producer.internals.ErrorLoggingCallback)
^C[2016-05-05 16:02:45,754] WARN TGT renewal thread has been interrupted
and will exit. (org.apache.kafka.common.security.kerberos.Login)
producer is throwing error

Anythoughts on this.


Regards,
Bharat


On Thu, May 5, 2016 at 4:19 PM, parth brahmbhatt <brahmbhatt.parth@gmail.com
> wrote:

> Acls will be written in zookeeper but you are using getAcl , what you need
>  is get  /kafka-acl/Topic/permissiontopic
>
> Thanks
> Parth
>
> On Thu, May 5, 2016 at 3:28 PM, BigData dev <bigdatadevguy@gmail.com>
> wrote:
>
> > Hi,
> > When I run the command
> >  /bin/kafka-acls.sh --topic permissiontopic --add --allow-host {host}
> > --allow-principal User:dev --operation Write --authorizer-properties
> > zookeeper.connect={host:port}
> >
> > I am getting output as acls are set.
> >
> > But when i check under zookeeper using below command, it is not showing
> the
> > acls which I have set for user dev.
> >
> > [zk: (CONNECTED) 13] getAcl /kafka-acl/Topic/permissiontopic
> > 'world,'anyone
> > : r
> > 'sasl,'kafka
> > : cdrwa
> >
> > Is my understanding correct kafka-acls will be written to zookeeper node.
> >
> >
> > This is causing when i run producer, it is failing as topic authorization
> > failed.
> >
> > If any one has used this, can you please provide the inputs
> >
> > Regards,
> > Bharat
> >
>

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message