pulsar-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From GitBox <...@apache.org>
Subject [GitHub] nkurihar opened a new pull request #904: Check message encryption when producer connect and publish
Date Thu, 01 Jan 1970 00:00:00 GMT
nkurihar opened a new pull request #904: Check message encryption when producer connect and
publish
URL: https://github.com/apache/incubator-pulsar/pull/904
 
 
   ### Motivation
   
   https://github.com/apache/incubator-pulsar/issues/894
   We want to guarantee that messages published are encrypted for particular namespaces in
which messages are ?sensitive? (e.g. address, phone-number, ?).
   
   ### Modifications
   
   * Add `encryption_required` policy to namespace
     * Add REST API endpoint and CLI command to update this policy
   * Add `encrypted` field to `CommandProducer`
     * It will be set to true if producer has encryptionKeys
   * Add `isEncryptionRequired` field to `PersistentTopic` and `NonPersistentTopic`
     * It will be automatically updated on policies update
   * If `encryption_required` is enabled in the namespace, check whether message is encrypted
or not when
     * `ServerCnx#handleProducer` (producer connect)
     * `Producer#publishMessage` (publish messages)
   
   ### Result
   
   If `encryption_required` is enabled in the namespace, unencrypted messages will be prevented
from publishing by Broker.

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


With regards,
Apache Git Services

Mime
View raw message