KIP-38 — ZooKeeper Authentication
Accepted Security
Adds SASL-based ZooKeeper authentication to Kafka brokers so that the metadata stored in ZooKeeper is only accessible to authenticated clients, using ZooKeeper ACLs to restrict write access. ZooKeeper metadata is currently world-readable and world-writable, allowing any client with ZooKeeper ensemble access to corrupt cluster metadata.
Details
| Author | Flavio Paiva Junqueira |
| Status | Accepted |
| JIRA | KAFKA-2639 |
| Wiki | View on Apache Wiki |
| Created | 2015-10-19 |
| Last Modified | 2016-01-06 |
Explore how this KIP affects the Kafka protocol in the Protocol Explorer, or see the full KIP database.