From user-return-12510-archive-asf-public=cust-asf.ponee.io@zookeeper.apache.org Sat Jan 11 02:48:36 2020 Return-Path: X-Original-To: archive-asf-public@cust-asf.ponee.io Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [207.244.88.153]) by mx-eu-01.ponee.io (Postfix) with SMTP id 09EB7180657 for ; Sat, 11 Jan 2020 03:48:35 +0100 (CET) Received: (qmail 24066 invoked by uid 500); 11 Jan 2020 02:48:34 -0000 Mailing-List: contact user-help@zookeeper.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: user@zookeeper.apache.org Delivered-To: mailing list user@zookeeper.apache.org Received: (qmail 24052 invoked by uid 99); 11 Jan 2020 02:48:33 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd2-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 11 Jan 2020 02:48:33 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd2-us-west.apache.org (ASF Mail Server at spamd2-us-west.apache.org) with ESMTP id 0C5E11A3482 for ; Sat, 11 Jan 2020 02:48:33 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd2-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: -0.2 X-Spam-Level: X-Spam-Status: No, score=-0.2 tagged_above=-999 required=6.31 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=disabled Authentication-Results: spamd2-us-west.apache.org (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mx1-he-de.apache.org ([10.40.0.8]) by localhost (spamd2-us-west.apache.org [10.40.0.9]) (amavisd-new, port 10024) with ESMTP id wWK-av7Fmpfo for ; Sat, 11 Jan 2020 02:48:31 +0000 (UTC) Received-SPF: Pass (mailfrom) identity=mailfrom; client-ip=2607:f8b0:4864:20::634; helo=mail-pl1-x634.google.com; envelope-from=shrikantkalani@gmail.com; receiver= Received: from mail-pl1-x634.google.com (mail-pl1-x634.google.com [IPv6:2607:f8b0:4864:20::634]) by mx1-he-de.apache.org (ASF Mail Server at mx1-he-de.apache.org) with ESMTPS id 83C527DD7F for ; Sat, 11 Jan 2020 02:48:30 +0000 (UTC) Received: by mail-pl1-x634.google.com with SMTP id b22so1550453pls.12 for ; Fri, 10 Jan 2020 18:48:30 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=content-transfer-encoding:from:mime-version:date:subject:message-id :to; bh=FCclWpZUyRV1ECCc1o3PvOd2kaTxR0pmBRKmRwLVn+I=; b=mSqlnLnKSCpDd9lDZxD0xPJwyFJg7wcEjYNS4AWkXyfgRSeDw/K4e+yoETMiryICyd a+oHr43JLzV6C7y56Tvh2IZI9N9wri8Tt25ULWGH7dh/9EkvP7txcUkU4nS6Gy/ScLrl K5r3bA+P0y107pB6AGvYOyFkMFsLUyxwRymWr3fT9d6kvoGGadQDPq1N0sk/mSlovjT6 wljaFsUORM4DvfDCjoUOK6xH2KJbOH2TrZJ5TF8telA3gTasOHzTXWx0N6bMlJOaBI0j B1xy/lJ8TwitY8XsFgCftUKLtiZeWilV4OOS+B9ZDanxoZ+bReFgWBgq/Ol/jU5mN1Et 5atg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:content-transfer-encoding:from:mime-version:date :subject:message-id:to; bh=FCclWpZUyRV1ECCc1o3PvOd2kaTxR0pmBRKmRwLVn+I=; b=tQ14PiIIuAoxq0nwQHrJUgqcoPBquKuq1kfx2rEtb8CAuFeEl4IZVzBD1vHlM3EdNs m2xS/v0ZOiZ+C+ScDdRtBklwplAvLLvRop+VB9PAQgk8LbqBHRTzvQAFrzknAM0o1uuO o2UZeUsrICSvDwjSB62kJJWZS3cyZwO+bJ040s40EA5/nHhxZ4H3sWpSgVKtjtfT3Vdz 0s+kSti2slWrjK+vTDmultmo37AoBZs/odAUt9VKp1n48t9mFDvusF+RqNK4GOKRXgN0 7uH2l78WtKbtTVJTZ+NzDISxDoIyh4eDbNRbO7zlKCjxxSU+uNLYmLpLq09rXNZFyMoy SHWA== X-Gm-Message-State: APjAAAXkQcnn6sx5OPUPoQOKbnd4xJQiPoYKhVgq+txRoK2o1rnZTmFY EA27QjNqWvHzogLV3r6P2MVGeLzi X-Google-Smtp-Source: APXvYqx/bjL4DsEkwn8ZyIvy/xS8TzvqfqSJtGX8ZhFy8OLWqQ4hXBxio9okBDDtC0q1/GT3NQrqLA== X-Received: by 2002:a17:90a:c211:: with SMTP id e17mr9318297pjt.14.1578710903036; Fri, 10 Jan 2020 18:48:23 -0800 (PST) Received: from [10.111.18.211] ([183.90.36.15]) by smtp.gmail.com with ESMTPSA id b193sm4617478pfb.57.2020.01.10.18.48.22 for (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Fri, 10 Jan 2020 18:48:22 -0800 (PST) Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable From: shrikant kalani Mime-Version: 1.0 (1.0) Date: Sat, 11 Jan 2020 10:48:14 +0800 Subject: Authorisation in Zookeeper Message-Id: <4FF0B259-5937-4EAD-B18A-133FC6A7CB5F@gmail.com> To: user@zookeeper.apache.org X-Mailer: iPhone Mail (17C54) Hi Zookeeper Users I have implemented TLS authentication in my cluster. Right now the authentic= ation is done based on host name (X509). Now I want to implement authorisation based on user I=E2=80=99d like only m= y system account should be able to read write data to znodes. How I can do that ? Is ACLs is the only solution ? Thanks Srikant Kalani Sent from my iPhone=