You are viewing a plain text version of this content. The canonical link for it is here.
Posted to jira@kafka.apache.org by "Satish Duggana (JIRA)" <ji...@apache.org> on 2018/12/12 11:36:00 UTC
[jira] [Comment Edited] (KAFKA-7694) Support ZooKeeper based
master/secret key management for delegation tokens
[ https://issues.apache.org/jira/browse/KAFKA-7694?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16718532#comment-16718532 ]
Satish Duggana edited comment on KAFKA-7694 at 12/12/18 11:35 AM:
------------------------------------------------------------------
This Jira also includes giving pluggable interfaces for delegation token storage and master key management and have zookeeper storage as the default implementation.
I am working on a KIP for the above, I will send it out when it is ready.
was (Author: satish.duggana):
This is about giving pluggable interfaces for delegation token storage and master key management and have zookeeper storage as the default implementation.
I am working on a KIP for the above, I will send it out when it is ready.
> Support ZooKeeper based master/secret key management for delegation tokens
> ---------------------------------------------------------------------------
>
> Key: KAFKA-7694
> URL: https://issues.apache.org/jira/browse/KAFKA-7694
> Project: Kafka
> Issue Type: Sub-task
> Reporter: Manikumar
> Assignee: Satish Duggana
> Priority: Major
>
> Master/secret key is used to generate and verify delegation tokens. currently, master key/secret is stored as plain text in server.properties config file. Same key must be configured across all the brokers. We require a re-deployment when the secret needs to be rotated.
> This JIRA is to explore and implement a ZooKeeper based master/secret key management to automate secret key generation and expiration.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)