- Existing clients using older versions will not request authorized operations in
Describerequests since the default is to disable this feature. This keeps older clients compatible with newer brokers.
- Newer clients connecting to older brokers will use the older protocol version and hence will not request authorized operations.
- When the AdminClient is talking to a broker which does not support KIP-430, it will throw an exception if the option is requested but not supported by brokersfill in either null or UnsupportedVersionException for the returned ACL operations fields in objects. For example, ConsumerGroupDescription#authorizedOperations will be null if the broker did not supply this information. DescribeClusterResult#authorizedOperations will throw an UnsupportedVersionException if the broker did not supply this information.
- When new operations are added, newer brokers may return operations that are not known to older clients. AdminClient will ignore any bit that is set in
authorized_operationsthat is not known to the client. The
Set<AclOperation>created by the client from the bits returned by the broker will only include operations that the client client knows about.