You are viewing a plain text version of this content. The canonical link for it is here.
Posted to jira@kafka.apache.org by "Dongjin Lee (Jira)" <ji...@apache.org> on 2021/11/02 14:45:00 UTC
[jira] [Commented] (KAFKA-13247) Adding functionality for loading
private key entry by alias from the keystore
[ https://issues.apache.org/jira/browse/KAFKA-13247?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17437398#comment-17437398 ]
Dongjin Lee commented on KAFKA-13247:
-------------------------------------
Hi [~tmargaryan]
Thank you for reporting this issue. I was working on the security features nowadays, and it seems like I can take this issue; but before that, I have one question: Could you clarify a case when Kafka needs this feature? AFAIK, Kafka Broker uses only one private key in the Keystore in most cases. Is there any case I have not encountered yet?
> Adding functionality for loading private key entry by alias from the keystore
> -----------------------------------------------------------------------------
>
> Key: KAFKA-13247
> URL: https://issues.apache.org/jira/browse/KAFKA-13247
> Project: Kafka
> Issue Type: Improvement
> Reporter: Tigran Margaryan
> Priority: Major
> Labels: kip-required
>
> Hello team,
> While configuring SSL for Kafka connectivity , I found out that there is no possibility to choose/load the private key entry by alias from the keystore defined via org.apache.kafka.common.config.SslConfigs.SSL_KEYSTORE_LOCATION_CONFIG. It turns out that the keystore could not have multiple private key entries .
> Kindly ask you to add that config (smth. like SSL_KEY_ALIAS_CONFIG) into SslConfigs with the corresponding functionality which should load only the private key entry by defined alias.
>
> Thanks in advance.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)