Schema Registry ACLs

Question

Schema Registry ACLs

maciejmaciejko-gid opened this issue 6 months ago · 2 comments

maciejmaciejko-gid commented 6 months ago

What is currently missing?

As a klaw user I would like to create/modify/delete ACLs for Schema Registry

Answer 1 · 2024-06-19T09:23:22.000Z

@maciejmaciejko-gid I think this is definitely something we can look into, we have had some other users discuss this with us in the past as well.

Is there a platform/schema registry(e.g. karapace) that would be of particular help?

Answer 2 · 2024-06-20T11:33:00.000Z

@maciejmaciejko-gid
If you are already using Klaw, then you can enable schema acls on your SR server and add schema acl to allow klaw cluster api to apply CRUD of schemas on SR server. This way you are only allowing Klaw to register schemas and not anyone else.

But if you are also allowing users to directly register schemas instead of Klaw, then you would need schema acls. However it is not advisable using both Klaw and users directly to register schemas.