Phillip Walker created KAFKA-5750:
-------------------------------------
Summary: Elevate log messages for denials to WARN in
SimpleAclAuthorizer class
Key: KAFKA-5750
URL: https://issues.apache.org/jira/browse/KAFKA-5750
Project: Kafka
Issue Type: Improvement
Components: security
Reporter: Phillip Walker
Currently, the authorizer logs all messages at DEBUG level and logs every
single authorization attempt, which can greatly decrease cluster performance,
especially when Mirrormaker also produces to that cluster. Many InfoSec
requirements, though, require that authorization denials be logged. The
proposed solution is to elevate any denial in SimpleAclAuthorizer and any other
relevant class to WARN while leaving approvals at their currently logging
levels.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
