Authorization using ACLs

Apache Kafka® ships with a pluggable, out-of-the-box Authorizer implementation that uses Apache ZooKeeper™ to store all the ACLs. It is important to set ACLs because otherwise access to resources is limited to super users when an Authorizer is configured. The default behavior is that if a resource has no associated ACLs, then no one is allowed to access the resource, except super users. The following topics describe how to create and manage ACLs for users and groups.