Loading...

XML

Word

Printable

JSON

Type: New Feature
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 1.10.0
Affects Version/s: None
Component/s: Configuration, Sink, Source
Labels:
None

Quarter:
- FY24Q1

Documentation Changes Summary:
Hide

Added the following new configurations so users can set the ssl properties for the connector specifically in the connection options:

connection.ssl.trustStore=<your path to truststore> connection.ssl.trustStorePassword=<your truststore password> connection.ssl.keyStore=<your path to keystore> connection.ssl.keyStorePassword=<your keystore password>"

Has the benefit of not relying on system properties which impact the whole jvm.
Show
Added the following new configurations so users can set the ssl properties for the connector specifically in the connection options: connection.ssl.trustStore=<your path to truststore> connection.ssl.trustStorePassword=<your truststore password> connection.ssl.keyStore=<your path to keystore> connection.ssl.keyStorePassword=<your keystore password>" Has the benefit of not relying on system properties which impact the whole jvm.

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name:
None
Goal Link:
None

Currently, truststore and keystore are supported using system properties using

export KAFKA_OPTS="\
-Djavax.net.ssl.trustStore=<your path to truststore> \
-Djavax.net.ssl.trustStorePassword=<your truststore password> \
-Djavax.net.ssl.keyStore=<your path to keystore> \
-Djavax.net.ssl.keyStorePassword=<your keystore password>"

and described in documentation.

In many deployments it is not possible to control java execution environment, and would be more convenient to use connector properties to handle those params, for examples:

connection.ssl.trustStore=<your path to truststore> 
connection.ssl.trustStorePassword=<your truststore password> 
connection.ssl.keyStore=<your path to keystore> 
connection.ssl.keyStorePassword=<your keystore password>"

is duplicated by

KAFKA-346 Add client truststore/keystore configuration properties

Closed

is related to

KAFKA-346 Add client truststore/keystore configuration properties

Closed

related to

KAFKA-358 Test SSL configuration on evergreen

Backlog

Assignee:: Ross Lawley
Reporter:: Ed Berezitsky
Votes:: 0 Vote for this issue
Watchers:: 4 Start watching this issue

Created:: Jan 18 2023 11:16:33 PM UTC
Updated:: Apr 17 2024 10:29:49 PM UTC
Resolved:: Mar 02 2023 10:01:12 AM UTC

Details

Description

Attachments

Issue Links

Activity

People

Dates