You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@kafka.apache.org by IT Consultant <0b...@gmail.com> on 2017/04/11 18:01:22 UTC

Kafka security

Hi All

How can I avoid using password for keystore creation ?

Our corporate policies doesn'tallow us to hardcore password. We are
currently passing keystore password while accessing TLS enabled Kafka
instance .

I would like to use either passwordless keystore or avoid password for
cleint accessing Kafka .


Please help

Re: Kafka security

Posted by Christian Csar <ch...@csar.us>.

Don't hard code it. Martin's suggestion allows it to be read from a
configuration file or injected from another source such as an environment
variable at runtime.

If you neither of these are acceptable for corporate policy I suggest
asking how it has been handled before at your company.

Christian


On Apr 11, 2017 11:10, "IT Consultant" <0b...@gmail.com> wrote:

Thanks for your response .

We aren't allowed to hard code  password in any of our program

On Apr 11, 2017 23:39, "Mar Ian" <ma...@hotmail.com> wrote:

> Since is a java property you could set the property (keystore password)
> programmatically,
>
> before you connect to kafka (ie, before creating a consumer or producer)
>
> System.setProperty("zookeeper.ssl.keyStore.password", password);
>
> martin
>
> ________________________________
> From: IT Consultant <0b...@gmail.com>
> Sent: April 11, 2017 2:01 PM
> To: users@kafka.apache.org
> Subject: Kafka security
>
> Hi All
>
> How can I avoid using password for keystore creation ?
>
> Our corporate policies doesn'tallow us to hardcore password. We are
> currently passing keystore password while accessing TLS enabled Kafka
> instance .
>
> I would like to use either passwordless keystore or avoid password for
> cleint accessing Kafka .
>
>
> Please help
>

Re: Kafka security

Posted by IT Consultant <0b...@gmail.com>.

Thanks for your response .

We aren't allowed to hard code  password in any of our program

On Apr 11, 2017 23:39, "Mar Ian" <ma...@hotmail.com> wrote:

> Since is a java property you could set the property (keystore password)
> programmatically,
>
> before you connect to kafka (ie, before creating a consumer or producer)
>
> System.setProperty("zookeeper.ssl.keyStore.password", password);
>
> martin
>
> ________________________________
> From: IT Consultant <0b...@gmail.com>
> Sent: April 11, 2017 2:01 PM
> To: users@kafka.apache.org
> Subject: Kafka security
>
> Hi All
>
> How can I avoid using password for keystore creation ?
>
> Our corporate policies doesn'tallow us to hardcore password. We are
> currently passing keystore password while accessing TLS enabled Kafka
> instance .
>
> I would like to use either passwordless keystore or avoid password for
> cleint accessing Kafka .
>
>
> Please help
>

Re: Kafka security

Posted by Mar Ian <ma...@hotmail.com>.

Since is a java property you could set the property (keystore password) programmatically,

before you connect to kafka (ie, before creating a consumer or producer)

System.setProperty("zookeeper.ssl.keyStore.password", password);

martin

________________________________
From: IT Consultant <0b...@gmail.com>
Sent: April 11, 2017 2:01 PM
To: users@kafka.apache.org
Subject: Kafka security

Hi All

How can I avoid using password for keystore creation ?

Our corporate policies doesn'tallow us to hardcore password. We are
currently passing keystore password while accessing TLS enabled Kafka
instance .

I would like to use either passwordless keystore or avoid password for
cleint accessing Kafka .


Please help