kafka-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Bala <kbkre...@yahoo.com.INVALID>
Subject Kafka ACL issue - Operation denied despite having full access to the topic
Date Fri, 28 Sep 2018 14:12:40 GMT
I have a kafka with kerberos security and trying to use the ACL and am not able to make it
work. 

Here is the error I am seeing in the server log.[2018-09-28 14:06:54,152] INFO Principal =
User:storm-mytestcluster is Denied Operation = Describe from host = <ip address of host>
on resource = Topic:icd_alpha (kafka.authorizer.logger)
[2018-09-28 14:06:54,312] INFO Principal = User:storm-mytestcluster is Denied Operation =
Describe from host = <ip address of host> on resource = Topic:icd_alpha (kafka.authorizer.logger)
[2018-09-28 14:06:54,472] INFO Principal = User:storm-mytestcluster is Denied Operation =
Describe from host = <ip address of host> on resource = Topic:icd_alpha (kafka.authorizer.logger)
[2018-09-28 14:06:54,631] INFO Principal = User:storm-mytestcluster is Denied Operation =
Describe from host = <ip address of host> on resource = Topic:icd_alpha (kafka.authorizer.logger)
[2018-09-28 14:06:54,793] INFO Principal = User:storm-mytestcluster is Denied Operation =
Describe from host = <ip address of host> on resource = Topic:icd_alpha (kafka.authorizer.logger)
[2018-09-28 14:06:54,953] INFO Principal = User:storm-mytestcluster is Denied Operation =
Describe from host = <ip address of host> on resource = Topic:icd_alpha (kafka.authorizer.logger)



But the user has full access to the topic: Here is the output of `list ` command

Current ACLs for resource `Topic:icd_alpha`: 
     user:storm-mytestcluster has Allow permission for operations: All from hosts: * 

Please help me, as I am kind of blocked and don't know how to proceed further.
ThanksBala

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message