You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@kafka.apache.org by IT Consultant <0b...@gmail.com> on 2017/04/11 18:01:22 UTC
Kafka security
Hi All
How can I avoid using password for keystore creation ?
Our corporate policies doesn't​allow us to hardcore password. We are
currently passing keystore password while accessing TLS enabled Kafka
instance .
I would like to use either passwordless keystore or avoid password for
cleint accessing Kafka .
Please help
Re: Kafka security
Posted by Christian Csar <ch...@csar.us>.
Don't hard code it. Martin's suggestion allows it to be read from a
configuration file or injected from another source such as an environment
variable at runtime.
If you neither of these are acceptable for corporate policy I suggest
asking how it has been handled before at your company.
Christian
On Apr 11, 2017 11:10, "IT Consultant" <0b...@gmail.com> wrote:
Thanks for your response .
We aren't allowed to hard code password in any of our program
On Apr 11, 2017 23:39, "Mar Ian" <ma...@hotmail.com> wrote:
> Since is a java property you could set the property (keystore password)
> programmatically,
>
> before you connect to kafka (ie, before creating a consumer or producer)
>
> System.setProperty("zookeeper.ssl.keyStore.password", password);
>
> martin
>
> ________________________________
> From: IT Consultant <0b...@gmail.com>
> Sent: April 11, 2017 2:01 PM
> To: users@kafka.apache.org
> Subject: Kafka security
>
> Hi All
>
> How can I avoid using password for keystore creation ?
>
> Our corporate policies doesn'tallow us to hardcore password. We are
> currently passing keystore password while accessing TLS enabled Kafka
> instance .
>
> I would like to use either passwordless keystore or avoid password for
> cleint accessing Kafka .
>
>
> Please help
>
Re: Kafka security
Posted by IT Consultant <0b...@gmail.com>.
Thanks for your response .
We aren't allowed to hard code password in any of our program
On Apr 11, 2017 23:39, "Mar Ian" <ma...@hotmail.com> wrote:
> Since is a java property you could set the property (keystore password)
> programmatically,
>
> before you connect to kafka (ie, before creating a consumer or producer)
>
> System.setProperty("zookeeper.ssl.keyStore.password", password);
>
> martin
>
> ________________________________
> From: IT Consultant <0b...@gmail.com>
> Sent: April 11, 2017 2:01 PM
> To: users@kafka.apache.org
> Subject: Kafka security
>
> Hi All
>
> How can I avoid using password for keystore creation ?
>
> Our corporate policies doesn'tallow us to hardcore password. We are
> currently passing keystore password while accessing TLS enabled Kafka
> instance .
>
> I would like to use either passwordless keystore or avoid password for
> cleint accessing Kafka .
>
>
> Please help
>
Re: Kafka security
Posted by Mar Ian <ma...@hotmail.com>.
Since is a java property you could set the property (keystore password) programmatically,
before you connect to kafka (ie, before creating a consumer or producer)
System.setProperty("zookeeper.ssl.keyStore.password", password);
martin
________________________________
From: IT Consultant <0b...@gmail.com>
Sent: April 11, 2017 2:01 PM
To: users@kafka.apache.org
Subject: Kafka security
Hi All
How can I avoid using password for keystore creation ?
Our corporate policies doesn'tallow us to hardcore password. We are
currently passing keystore password while accessing TLS enabled Kafka
instance .
I would like to use either passwordless keystore or avoid password for
cleint accessing Kafka .
Please help