You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@nifi.apache.org by "Gábor Gyimesi (Jira)" <ji...@apache.org> on 2021/10/29 13:35:00 UTC
[jira] [Updated] (MINIFICPP-1677) Add SASL PLAIN mechanism support
to Kafka processors
[ https://issues.apache.org/jira/browse/MINIFICPP-1677?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Gábor Gyimesi updated MINIFICPP-1677:
-------------------------------------
Description:
PublishKafka processor currently supports Kerberos properties for SASL/GSSAPI configuration which is the default SASL configuration in librdkafka. We should also support SASL/PLAIN configuration with username and password authentication. This requires adding these additional username, password, sasl mechanism properties.
We may also need to extend the security protocol options with SASL_PLAINTEXT and SASL_SSL to be more precise which protocol is used, as previously SASL was implicitly implied when Kerberos properties were set. This would also be on par with the NiFi implementation. Another option would be to prefer setting the security protocol depending on the Kerberos or plain username password properties and the configured plaintext/ssl option.
The same configuration possibilities should also be implemented in ConsumeKafka processor.
was:
PublishKafka processor currently supports Kerberos properties for SASL/GSSAPI configuration which is the default SASL configuration in librdkafka. We should also support SASL/PLAIN configuration with username and password authentication. This requires adding these additional username, passwordl, sasl mechanism properties. We also need to extend the security protocol options with SASL_PLAINTEXT and SASL_SSL to be more precise which protocol is used, as previously SASL was implicitly implied when Kerberos properties were set. This would also be on par with the NiFi implementation.
The same configuration possibilities should also be implemented in ConsumeKafka processor.
> Add SASL PLAIN mechanism support to Kafka processors
> ----------------------------------------------------
>
> Key: MINIFICPP-1677
> URL: https://issues.apache.org/jira/browse/MINIFICPP-1677
> Project: Apache NiFi MiNiFi C++
> Issue Type: New Feature
> Reporter: Gábor Gyimesi
> Assignee: Gábor Gyimesi
> Priority: Major
>
> PublishKafka processor currently supports Kerberos properties for SASL/GSSAPI configuration which is the default SASL configuration in librdkafka. We should also support SASL/PLAIN configuration with username and password authentication. This requires adding these additional username, password, sasl mechanism properties.
> We may also need to extend the security protocol options with SASL_PLAINTEXT and SASL_SSL to be more precise which protocol is used, as previously SASL was implicitly implied when Kerberos properties were set. This would also be on par with the NiFi implementation. Another option would be to prefer setting the security protocol depending on the Kerberos or plain username password properties and the configured plaintext/ssl option.
> The same configuration possibilities should also be implemented in ConsumeKafka processor.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)