Build failed in Jenkins: pulsar-website-build #520

See Changes: [guosijie] Issue 3226: Unclosed consumer after calling closeAsync [mmerli] Fixed export path (#3318) [github] Clean up and correct properties to producer and consumers created by [mmerli] s/par

What is the point of proxy level authorization?

Hi folks, The pulsar proxy allows authorization to be configured, which checks if a role has access to a resource it is trying to access. If it does, the request is forwarded to the broker. At the broker, authorization is checked again. So my question is, what is the point of having authorization

Re: What is the point of proxy level authorization?

Hi Ivan, Assume a role/principal R has permissions to produce on a namespace. If we don't authenticate at the proxy then anyone (attacker) can say that they belong to role R and connect to the proxy, the proxy will forward the role name to the broker which will authorize it and allow access. In