See https://github.com/apache/pulsar/issues/17517.
Asaf Mesika 于2022年10月3日周一 19:47写道:
> I kind of lost you here Zixuan.
>
> Is there any chance you describe the authentication flow including the
> commands? Then specify the change you wish to make?
>
>
> On Thu, Aug 18, 2022 at 5:21 AM Zixuan Li
I kind of lost you here Zixuan.
Is there any chance you describe the authentication flow including the
commands? Then specify the change you wish to make?
On Thu, Aug 18, 2022 at 5:21 AM Zixuan Liu wrote:
> A little confusing here is that both ProxyClient and DirectProxyHandler
> pass original
A little confusing here is that both ProxyClient and DirectProxyHandler
pass original authentication and direct authentication data, but the broker
can only check if the original authentication data is expired.
This is the expected behavior, right? What if the direct authentication
data is expired?
> So the problem is that the Proxy is not requesting a refresh ?
It should be the proxy client.
Zixuan
Enrico Olivelli 于2022年8月17日周三 23:35写道:
> So the problem is that the Proxy is not requesting a refresh ?
>
> Enrico
>
> Il giorno mer 17 ago 2022 alle ore 16:26 Zixuan Liu
> ha scritto:
> >
>
So the problem is that the Proxy is not requesting a refresh ?
Enrico
Il giorno mer 17 ago 2022 alle ore 16:26 Zixuan Liu
ha scritto:
>
> Thank @Qiang!
>
> Update the diagram:
> https://drive.google.com/file/d/1E6z0dzXzvW5ZxG6d6YUghL9OikA8j4UC/view?usp=sharing
>
> Thanks,
> Zixuan
>
> Qiang Huan
Thank @Qiang!
Update the diagram:
https://drive.google.com/file/d/1E6z0dzXzvW5ZxG6d6YUghL9OikA8j4UC/view?usp=sharing
Thanks,
Zixuan
Qiang Huang 于2022年8月17日周三 19:13写道:
> It makes sense to me. BTW, the image is broken.
>
> Zixuan Liu 于2022年8月17日周三 11:10写道:
>
> > Note that there are two clients,
It makes sense to me. BTW, the image is broken.
Zixuan Liu 于2022年8月17日周三 11:10写道:
> Note that there are two clients, the user client, and the proxy client.
> When the original authenticate data expires, the user client cannot send a
> request to the proxy to find the broker URL. We haven't tests
Note that there are two clients, the user client, and the proxy client.
When the original authenticate data expires, the user client cannot send a
request to the proxy to find the broker URL. We haven't tests to cover this.
A simple diagram represents workflow:
[image: image.png]
Both connections
Hi all,
Refreshing the authentication data comes from the client is important. We
have two types of authentication data, directly authentication data, and
original authentication data:
1. Directly authentication data
The client/proxy brings the authentication data directly connected to the
broker
