sajjad-moradi opened a new pull request, #9110: URL: https://github.com/apache/pinot/pull/9110
AccessControl on pinot controller can enable authentication on the endpoints that don't even have `@Authentication` annotation (the access type is inferred based `@PUT`, `@GET`, `@POST`, and `@DELETE` annotation of the endpoint). The wiring is not properly set though. If the implementation of AccessControl return false for `protectAnnotatedOnly` method, access type is always set to READ. This PR fixes the issue. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: commits-unsubscr...@pinot.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: commits-unsubscr...@pinot.apache.org For additional commands, e-mail: commits-h...@pinot.apache.org
