Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug] When anonymousUserRole and MultiRolesTokenAuthorizationProvider are enabled, super user role no longer works. #20938

Closed
1 of 2 tasks
tuteng opened this issue Aug 7, 2023 · 0 comments · Fixed by #20939
Closed
1 of 2 tasks

[Bug] When anonymousUserRole and MultiRolesTokenAuthorizationProvider are enabled, super user role no longer works. #20938

tuteng opened this issue Aug 7, 2023 · 0 comments · Fixed by #20939
Assignees
@tuteng
Labels
type/bug The PR fixed a bug or issue reported a bug

Comments

@tuteng
Copy link
Member

tuteng commented Aug 7, 2023

Search before asking

  • I searched in the issues and found nothing similar.

Version

2.10, 2.11, 3.0 and master

Minimal reproduce step

Enabled anonymousUserRole, authentication and authorization plugin
Set authorizationProvider value is org.apache.pulsar.broker.authorization.MultiRolesTokenAuthorizationProvider

curl http://localhost:8080/admin/v2/tenants

Throws 401 exception:

Unauthorized to validateTenantOperation for originalPrincipal [admin] and clientAppId [admin] about operation [LIST_NAMESPACES] on tenant [xxxxx]

What did you expect to see?

No exceptions are thrown

What did you see instead?

Throws 401 exception:

Unauthorized to validateTenantOperation for originalPrincipal [admin] and clientAppId [admin] about operation [LIST_NAMESPACES] on tenant [xxxxx]

Anything else?

No response

Are you willing to submit a PR?

  • I'm willing to submit a PR!
@tuteng tuteng added the type/bug The PR fixed a bug or issue reported a bug label Aug 7, 2023
@tuteng tuteng mentioned this issue Aug 7, 2023
Merged
15 tasks
@Technoboy- Technoboy- assigned Technoboy- and tuteng and unassigned Technoboy- Aug 11, 2023
tuteng added a commit that referenced this issue Aug 11, 2023
@tuteng
[fix][broker]Check that the super user role is in the MultiRolesToken…
e41883e 
…AuthorizationProvider plugin (#20939)

Fixed #20938
Technoboy- pushed a commit that referenced this issue Aug 17, 2023
@tuteng @Technoboy-
[fix][broker]Check that the super user role is in the MultiRolesToken…
d869b9e 
…AuthorizationProvider plugin (#20939)

Fixed #20938
Technoboy- pushed a commit that referenced this issue Aug 17, 2023
@tuteng @Technoboy-
[fix][broker]Check that the super user role is in the MultiRolesToken…
40471b2 
…AuthorizationProvider plugin (#20939)

Fixed #20938
merlimat pushed a commit that referenced this issue Oct 11, 2023
@tuteng @merlimat
[fix][broker]Check that the super user role is in the MultiRolesToken…
031809e 
…AuthorizationProvider plugin (#20939)

Fixed #20938
Technoboy- pushed a commit that referenced this issue Oct 30, 2023
@tuteng @Technoboy-
[fix][broker]Check that the super user role is in the MultiRolesToken…
e01b85e 
…AuthorizationProvider plugin (#20939)

Fixed #20938
nikhil-ctds pushed a commit to datastax/pulsar that referenced this issue Dec 20, 2023
@tuteng @nikhil-ctds
[fix][broker]Check that the super user role is in the MultiRolesToken…
9c21b93 
…AuthorizationProvider plugin (apache#20939)

Fixed apache#20938
srinath-ctds pushed a commit to datastax/pulsar that referenced this issue Dec 20, 2023
@tuteng @srinath-ctds
[fix][broker]Check that the super user role is in the MultiRolesToken…
cdc9cf1 
…AuthorizationProvider plugin (apache#20939)

Fixed apache#20938
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@tuteng tuteng

Labels
type/bug The PR fixed a bug or issue reported a bug
Projects
None yet
Milestone
No milestone
2 participants
@tuteng @Technoboy-