Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Hyland Connect
- Enterprise Platforms
- Nuxeo
- Nuxeo Forum
- Kafka with SASL/SSL
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Kafka with SASL/SSL
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-29-2019 08:34 AM
Nuxeo folks. In kafka-config.xml.nxftl, the following version supports SASL plaintext, SASL SCRAM-SHA-512, SASL SCRAM-SHA-512 over SSL, and two-way SSL. Please consider:
<#escape x as x?xml>
<?xml version="1.0"?>
<component name="org.nuxeo.kafka.defaultConfig">
<#if "${kafka.enabled}" == "true">
<require>org.nuxeo.runtime.stream.kafka.service</require>
<extension point="kafkaConfig" target="org.nuxeo.runtime.stream.kafka.service">
<kafkaConfig name="default" topicPrefix="${kafka.topicPrefix}">
<producer>
<property name="bootstrap.servers">${kafka.bootstrap.servers}</property>
<property name="default.replication.factor">${kafka.default.replication.factor}</property>
<#if ((kafka.sasl.enabled)!"false") == "true" || ((kafka.ssl)!"false") == "true">
<property name="security.protocol">${kafka.security.protocol}</property>
</#if>
<#if "${kafka.sasl.enabled}" == "true">
<property name="sasl.mechanism">${kafka.sasl.mechanism}</property>
<property name="sasl.jaas.config">${kafka.sasl.jaas.config}</property>
</#if>
<#if "${kafka.ssl}" == "true">
<property name="ssl.truststore.type">${kafka.truststore.type}</property>
<property name="ssl.truststore.location">${kafka.truststore.path}</property>
<property name="ssl.truststore.password">${kafka.truststore.password}</property>
<#if ((kafka.security.protocol)!"") == "SSL">
<property name="ssl.keystore.type">${kafka.keystore.type}</property>
<property name="ssl.keystore.location">${kafka.keystore.path}</property>
<property name="ssl.keystore.password">${kafka.keystore.password}</property>
</#if>
</#if>
</producer>
<consumer>
<property name="bootstrap.servers">${kafka.bootstrap.servers}</property>
<property name="request.timeout.ms">${kafka.request.timeout.ms}</property>
<property name="max.poll.interval.ms">${kafka.max.poll.interval.ms}</property>
<property name="session.timeout.ms">${kafka.session.timeout.ms}</property>
<property name="heartbeat.interval.ms">${kafka.heartbeat.interval.ms}</property>
<property name="max.poll.records">${kafka.max.poll.records}</property>
<#if ((kafka.sasl.enabled)!"false") == "true" || ((kafka.ssl)!"false") == "true">
<property name="security.protocol">${kafka.security.protocol}</property>
</#if>
<#if "${kafka.sasl.enabled}" == "true">
<property name="sasl.mechanism">${kafka.sasl.mechanism}</property>
<property name="sasl.jaas.config">${kafka.sasl.jaas.config}</property>
</#if>
<#if "${kafka.ssl}" == "true">
<property name="ssl.truststore.type">${kafka.truststore.type}</property>
<property name="ssl.truststore.location">${kafka.truststore.path}</property>
<property name="ssl.truststore.password">${kafka.truststore.password}</property>
<#if ((kafka.security.protocol)!"") == "SSL">
<property name="ssl.keystore.type">${kafka.keystore.type}</property>
<property name="ssl.keystore.location">${kafka.keystore.path}</property>
<property name="ssl.keystore.password">${kafka.keystore.password}</property>
</#if>
</#if>
</consumer>
</kafkaConfig>
<kafkaConfig name="bulk" topicPrefix="${kafka.topicPrefix}bulk-">
<producer>
<property name="bootstrap.servers">${kafka.bootstrap.servers}</property>
<property name="default.replication.factor">${kafka.default.replication.factor}</property>
<#if ((kafka.sasl.enabled)!"false") == "true" || ((kafka.ssl)!"false") == "true">
<property name="security.protocol">${kafka.security.protocol}</property>
</#if>
<#if "${kafka.sasl.enabled}" == "true">
<property name="sasl.mechanism">${kafka.sasl.mechanism}</property>
<property name="sasl.jaas.config">${kafka.sasl.jaas.config}</property>
</#if>
<#if "${kafka.ssl}" == "true">
<property name="ssl.truststore.type">${kafka.truststore.type}</property>
<property name="ssl.truststore.location">${kafka.truststore.path}</property>
<property name="ssl.truststore.password">${kafka.truststore.password}</property>
<#if ((kafka.security.protocol)!"") == "SSL">
<property name="ssl.keystore.type">${kafka.keystore.type}</property>
<property name="ssl.keystore.location">${kafka.keystore.path}</property>
<property name="ssl.keystore.password">${kafka.keystore.password}</property>
</#if>
</#if>
</producer>
<consumer>
<property name="bootstrap.servers">${kafka.bootstrap.servers}</property>
<property name="request.timeout.ms">${kafka.request.timeout.ms}</property>
<property name="max.poll.interval.ms">${kafka.max.poll.interval.ms}</property>
<property name="session.timeout.ms">${kafka.session.timeout.ms}</property>
<property name="heartbeat.interval.ms">${kafka.heartbeat.interval.ms}</property>
<#if ((kafka.sasl.enabled)!"false") == "true" || ((kafka.ssl)!"false") == "true">
<property name="security.protocol">${kafka.security.protocol}</property>
</#if>
<#if "${kafka.sasl.enabled}" == "true">
<property name="sasl.mechanism">${kafka.sasl.mechanism}</property>
<property name="sasl.jaas.config">${kafka.sasl.jaas.config}</property>
</#if>
<#if "${kafka.ssl}" == "true">
<property name="ssl.truststore.type">${kafka.truststore.type}</property>
<property name="ssl.truststore.location">${kafka.truststore.path}</property>
<property name="ssl.truststore.password">${kafka.truststore.password}</property>
<#if ((kafka.security.protocol)!"") == "SSL">
<property name="ssl.keystore.type">${kafka.keystore.type}</property>
<property name="ssl.keystore.location">${kafka.keystore.path}</property>
<property name="ssl.keystore.password">${kafka.keystore.password}</property>
</#if>
</#if>
</consumer>
</kafkaConfig>
</extension>
</#if>
</component>
</#escape>
0 REPLIES 0
Getting started
Find what you came for
We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.
