You are right, we need to spilt this point.
Yunze Xu 于2022年4月18日周一 15:17写道:
> I have another concern that since we have to use `AuthenticationTls` for
> TLS
> transport encryption, how can we perform a non-TLS authentication? It looks
> like there’s no way to do that.
>
> Thanks,
> Yunze
>
>
>
I have another concern that since we have to use `AuthenticationTls` for TLS
transport encryption, how can we perform a non-TLS authentication? It looks
like there’s no way to do that.
Thanks,
Yunze
> 2022年3月23日 11:24,Zixuan Liu 写道:
>
>> I think the priority of `AuthenticationTls` must be
> I think the priority of `AuthenticationTls` must be higher. Then it
should be encouraged to use `AuthenticationTls` when TLS authentication is
enabled at broker side. Otherwise, these two options should be encouraged
to use.
You are right, if we are set up the `AuthenticationTls` and TLS
If `tlsCertFilePath` and `tlsKeyFilePath` were added to the client builder
options, I think they can also be used for TLS authentication as well.
I prefer this solution now just because it looks like generating certificats
automatically is not good, from what Enrico said.
The problem is that
Good point. It's because generating a certificate automatically is not safe,
right? If so, I think there is no need to add this feature since the motivation
is to make the code more intuitive.
Thanks,
Yunze
> 2022年3月22日 上午12:40,Enrico Olivelli 写道:
>
> Il giorno lun 21 mar 2022 alle ore
BTW, auto TLS is a good idea.
Zixuan Liu 于2022年3月22日周二 11:03写道:
> Hi Yunze,
>
> The current implementation is confusing, we should split the transport and
> auth for TLS.
>
> For transport, the code can be so like:
> ```
> PulsarClient client = PulsarClient.builder()
>
Hi Yunze,
The current implementation is confusing, we should split the transport and
auth for TLS.
For transport, the code can be so like:
```
PulsarClient client = PulsarClient.builder()
.enableTls(true)
.tlsTrustCertsFilePath("ca.pem")
Il giorno lun 21 mar 2022 alle ore 16:31 Yunze Xu
ha scritto:
>
> Hi all,
>
> Recently I found a document error when configuring Pulsar client for TLS
> encryption. See https://github.com/apache/pulsar/issues/14762. However, the
> code
> example in the official documents is more intuitive.
>
>
Hi all,
Recently I found a document error when configuring Pulsar client for TLS
encryption. See https://github.com/apache/pulsar/issues/14762. However, the code
example in the official documents is more intuitive.
See https://pulsar.apache.org/docs/en/security-tls-transport/#java-client, the