Thanks for the KIP, Rajini. This is a useful improvement, so +1 (binding) from me.
I really don't like how the Java Security classes work, so I would have preferred to avoid emulating them, but the KIP is consistent with previous related KIPs and that's the direction we chose previously. Also, I think I might have tried to reduce the number of configs from 2 to 1 (in broker and client) by relying more on Java, but I don't have a concrete proposal and it would result in a larger API surface area. Ismael On Thu, Apr 6, 2017 at 2:53 AM, Rajini Sivaram <rajinisiva...@gmail.com> wrote: > Hi all, > > I would like to start the voting process for KIP-86: > > https://cwiki.apache.org/confluence/display/KAFKA/KIP- > 86%3A+Configurable+SASL+callback+handlers > > The KIP makes callback handlers for SASL configurable to make it simpler to > integrate with custom authentication database or custom authentication > servers. This is particularly useful for SASL/PLAIN where the > implementation in Kafka based on credentials stored in jaas.conf is not > suitable for production use. It is also useful for SCRAM in environments > where ZooKeeper is not secure. > > Thank you... > > Regards, > > Rajini >
