console icon indicating copy to clipboard operation
console copied to clipboard

Published 20 hours ago verified publisher icon redpanda-data

Feature request: message based access restrictions

Open metamarcdw opened this issue 3 years ago • 2 comments

Provide admins with the ability to filter/restrict access to specific classes of messages based on their content.

A given cluster may hold data for many accounts/tenants within the same topic(s), and the organization which owns said cluster may be obligated to restrict access to data for certain accounts relative to location and/or jurisdiction. Suppose each message is associated with an account via it's content, using something like a header or a prefix on the key.

In order to use Kowl, this organization would require a feature that would enable them to filter whole classes of messages, based on their content, from all views for specific users or groups.

metamarcdw avatar Apr 14 '21 23:04 metamarcdw

Got it, do you want this to be configurable in the YAML config as part of the roles config (https://github.com/cloudhut/kowl/blob/master/docs/config/kowl-business-roles.yaml)?

weeco avatar Apr 15 '21 08:04 weeco

Yeah that seems reasonable to me

metamarcdw avatar Apr 15 '21 11:04 metamarcdw

This seems like something we can leverage wasm (Redpanda) for in the future, and this seems a bit complicated and niche to do generically. Closing for now unless we get another ask.

twmb avatar Oct 19 '23 14:10 twmb

Also, related: https://github.com/redpanda-data/console/issues/211

twmb avatar Oct 19 '23 14:10 twmb