kafka git commit: KAFKA-2848; Use client SSL/SASL config utilities in Kafka Connect to avoid duplication of configs.

Mon, 16 Nov 2015 22:01:07 -0800 

Repository: kafka
Updated Branches:
  refs/heads/0.9.0 1a7f37bca -> cae36f5c3


KAFKA-2848; Use client SSL/SASL config utilities in Kafka Connect to avoid 
duplication of configs.

Author: Ewen Cheslack-Postava <[email protected]>

Reviewers: Jun Rao <[email protected]>

Closes #539 from ewencp/kafka-2848-reuse-ssl-sasl-client-configs

(cherry picked from commit f1169f1da8728db842aca23dcb6fde740a400699)
Signed-off-by: Jun Rao <[email protected]>


Project: http://git-wip-us.apache.org/repos/asf/kafka/repo
Commit: http://git-wip-us.apache.org/repos/asf/kafka/commit/cae36f5c
Tree: http://git-wip-us.apache.org/repos/asf/kafka/tree/cae36f5c
Diff: http://git-wip-us.apache.org/repos/asf/kafka/diff/cae36f5c

Branch: refs/heads/0.9.0
Commit: cae36f5c32e8e20ba36207015e8118b4ffb1ae24
Parents: 1a7f37b
Author: Ewen Cheslack-Postava <[email protected]>
Authored: Mon Nov 16 22:00:34 2015 -0800
Committer: Jun Rao <[email protected]>
Committed: Mon Nov 16 22:00:42 2015 -0800

----------------------------------------------------------------------
 .../runtime/distributed/DistributedConfig.java  | 32 +++++---------------
 1 file changed, 8 insertions(+), 24 deletions(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/kafka/blob/cae36f5c/connect/runtime/src/main/java/org/apache/kafka/connect/runtime/distributed/DistributedConfig.java
----------------------------------------------------------------------
diff --git 
a/connect/runtime/src/main/java/org/apache/kafka/connect/runtime/distributed/DistributedConfig.java
 
b/connect/runtime/src/main/java/org/apache/kafka/connect/runtime/distributed/DistributedConfig.java
index 043c542..0c5c92f 100644
--- 
a/connect/runtime/src/main/java/org/apache/kafka/connect/runtime/distributed/DistributedConfig.java
+++ 
b/connect/runtime/src/main/java/org/apache/kafka/connect/runtime/distributed/DistributedConfig.java
@@ -19,8 +19,6 @@ package org.apache.kafka.connect.runtime.distributed;
 
 import org.apache.kafka.clients.CommonClientConfigs;
 import org.apache.kafka.common.config.ConfigDef;
-import org.apache.kafka.common.config.SslConfigs;
-import org.apache.kafka.common.config.SaslConfigs;
 import org.apache.kafka.connect.runtime.WorkerConfig;
 
 import java.util.Map;
@@ -134,28 +132,6 @@ public class DistributedConfig extends WorkerConfig {
                         "",
                         ConfigDef.Importance.LOW,
                         CommonClientConfigs.METRIC_REPORTER_CLASSES_DOC)
-                .define(CommonClientConfigs.SECURITY_PROTOCOL_CONFIG, 
ConfigDef.Type.STRING, CommonClientConfigs.DEFAULT_SECURITY_PROTOCOL, 
ConfigDef.Importance.MEDIUM, CommonClientConfigs.SECURITY_PROTOCOL_DOC)
-                .define(SslConfigs.PRINCIPAL_BUILDER_CLASS_CONFIG, 
ConfigDef.Type.CLASS, SslConfigs.DEFAULT_PRINCIPAL_BUILDER_CLASS, 
ConfigDef.Importance.LOW, SslConfigs.PRINCIPAL_BUILDER_CLASS_DOC)
-                .define(SslConfigs.SSL_PROTOCOL_CONFIG, ConfigDef.Type.STRING, 
SslConfigs.DEFAULT_SSL_PROTOCOL, ConfigDef.Importance.MEDIUM, 
SslConfigs.SSL_PROTOCOL_DOC)
-                .define(SslConfigs.SSL_PROVIDER_CONFIG, ConfigDef.Type.STRING, 
null, ConfigDef.Importance.MEDIUM, SslConfigs.SSL_PROVIDER_DOC)
-                .define(SslConfigs.SSL_CIPHER_SUITES_CONFIG, 
ConfigDef.Type.LIST, null, ConfigDef.Importance.LOW, 
SslConfigs.SSL_CIPHER_SUITES_DOC)
-                .define(SslConfigs.SSL_ENABLED_PROTOCOLS_CONFIG, 
ConfigDef.Type.LIST, SslConfigs.DEFAULT_SSL_ENABLED_PROTOCOLS, 
ConfigDef.Importance.MEDIUM, SslConfigs.SSL_ENABLED_PROTOCOLS_DOC)
-                .define(SslConfigs.SSL_KEYSTORE_TYPE_CONFIG, 
ConfigDef.Type.STRING, SslConfigs.DEFAULT_SSL_KEYSTORE_TYPE, 
ConfigDef.Importance.MEDIUM, SslConfigs.SSL_KEYSTORE_TYPE_DOC)
-                .define(SslConfigs.SSL_KEYSTORE_LOCATION_CONFIG, 
ConfigDef.Type.STRING, null, ConfigDef.Importance.HIGH, 
SslConfigs.SSL_KEYSTORE_LOCATION_DOC)
-                .define(SslConfigs.SSL_KEYSTORE_PASSWORD_CONFIG, 
ConfigDef.Type.STRING, null, ConfigDef.Importance.HIGH, 
SslConfigs.SSL_KEYSTORE_PASSWORD_DOC)
-                .define(SslConfigs.SSL_KEY_PASSWORD_CONFIG, 
ConfigDef.Type.STRING, null, ConfigDef.Importance.HIGH, 
SslConfigs.SSL_KEY_PASSWORD_DOC)
-                .define(SslConfigs.SSL_TRUSTSTORE_TYPE_CONFIG, 
ConfigDef.Type.STRING, SslConfigs.DEFAULT_SSL_TRUSTSTORE_TYPE, 
ConfigDef.Importance.MEDIUM, SslConfigs.SSL_TRUSTSTORE_TYPE_DOC)
-                .define(SslConfigs.SSL_TRUSTSTORE_LOCATION_CONFIG, 
ConfigDef.Type.STRING, null, ConfigDef.Importance.HIGH, 
SslConfigs.SSL_TRUSTSTORE_LOCATION_DOC)
-                .define(SslConfigs.SSL_TRUSTSTORE_PASSWORD_CONFIG, 
ConfigDef.Type.STRING, null, ConfigDef.Importance.HIGH, 
SslConfigs.SSL_TRUSTSTORE_PASSWORD_DOC)
-                .define(SslConfigs.SSL_KEYMANAGER_ALGORITHM_CONFIG, 
ConfigDef.Type.STRING, SslConfigs.DEFAULT_SSL_KEYMANGER_ALGORITHM, 
ConfigDef.Importance.LOW, SslConfigs.SSL_KEYMANAGER_ALGORITHM_DOC)
-                .define(SslConfigs.SSL_TRUSTMANAGER_ALGORITHM_CONFIG, 
ConfigDef.Type.STRING, SslConfigs.DEFAULT_SSL_TRUSTMANAGER_ALGORITHM, 
ConfigDef.Importance.LOW, SslConfigs.SSL_TRUSTMANAGER_ALGORITHM_DOC)
-                
.define(SslConfigs.SSL_ENDPOINT_IDENTIFICATION_ALGORITHM_CONFIG, 
ConfigDef.Type.STRING, null,  ConfigDef.Importance.LOW, 
SslConfigs.SSL_ENDPOINT_IDENTIFICATION_ALGORITHM_DOC)
-                .define(SaslConfigs.SASL_KERBEROS_SERVICE_NAME, 
ConfigDef.Type.STRING, null, ConfigDef.Importance.MEDIUM, 
SaslConfigs.SASL_KERBEROS_SERVICE_NAME_DOC)
-                .define(SaslConfigs.SASL_KERBEROS_KINIT_CMD, 
ConfigDef.Type.STRING, SaslConfigs.DEFAULT_KERBEROS_KINIT_CMD, 
ConfigDef.Importance.LOW, SaslConfigs.SASL_KERBEROS_KINIT_CMD_DOC)
-                .define(SaslConfigs.SASL_KERBEROS_TICKET_RENEW_WINDOW_FACTOR, 
ConfigDef.Type.DOUBLE, SaslConfigs.DEFAULT_KERBEROS_TICKET_RENEW_WINDOW_FACTOR, 
ConfigDef.Importance.LOW, 
SaslConfigs.SASL_KERBEROS_TICKET_RENEW_WINDOW_FACTOR_DOC)
-                .define(SaslConfigs.SASL_KERBEROS_TICKET_RENEW_JITTER, 
ConfigDef.Type.DOUBLE, SaslConfigs.DEFAULT_KERBEROS_TICKET_RENEW_JITTER, 
ConfigDef.Importance.LOW, SaslConfigs.SASL_KERBEROS_TICKET_RENEW_JITTER_DOC)
-                .define(SaslConfigs.SASL_KERBEROS_MIN_TIME_BEFORE_RELOGIN, 
ConfigDef.Type.LONG, SaslConfigs.DEFAULT_KERBEROS_MIN_TIME_BEFORE_RELOGIN, 
ConfigDef.Importance.LOW, SaslConfigs.SASL_KERBEROS_MIN_TIME_BEFORE_RELOGIN_DOC)
-                .define(SaslConfigs.SASL_KERBEROS_PRINCIPAL_TO_LOCAL_RULES, 
ConfigDef.Type.LIST, 
SaslConfigs.DEFAULT_SASL_KERBEROS_PRINCIPAL_TO_LOCAL_RULES, 
ConfigDef.Importance.MEDIUM, 
SaslConfigs.SASL_KERBEROS_PRINCIPAL_TO_LOCAL_RULES_DOC)
                 .define(CommonClientConfigs.REQUEST_TIMEOUT_MS_CONFIG,
                         ConfigDef.Type.INT,
                         40 * 1000,
@@ -168,6 +144,14 @@ public class DistributedConfig extends WorkerConfig {
                         9 * 60 * 1000,
                         ConfigDef.Importance.MEDIUM,
                         CommonClientConfigs.CONNECTIONS_MAX_IDLE_MS_DOC)
+                // security support
+                .define(CommonClientConfigs.SECURITY_PROTOCOL_CONFIG,
+                        ConfigDef.Type.STRING,
+                        CommonClientConfigs.DEFAULT_SECURITY_PROTOCOL,
+                        ConfigDef.Importance.MEDIUM,
+                        CommonClientConfigs.SECURITY_PROTOCOL_DOC)
+                .withClientSslSupport()
+                .withClientSaslSupport()
                 .define(WORKER_SYNC_TIMEOUT_MS_CONFIG,
                         ConfigDef.Type.INT,
                         3000,

Reply via email to