Kafka 4.0 here.
I thought that KIP-687
<https://cwiki.apache.org/confluence/display/KAFKA/KIP-687%3A+Automatic+Reloading+of+Security+Store>
was available but "ssl.keystore.location.refresh.interval.ms" seems to
be silently ignored and not certificate reloading is done.
KIP-687 is marked as "accepted" in 2020, but I haven't found any
reference to it in the release notes of any Kafka release.
Is it actually available in Kafka 4.0?
If not, what is people doing to refresh certificates under Kraft, beside
manualy updating the certificate files and rebooting the
brokers/controllers?
Thanks.
--
Jesús Cea Avión _/_/ _/_/_/ _/_/_/
jcea@jcea.es - https://www.jcea.es/ _/_/ _/_/ _/_/ _/_/ _/_/
Twitter: @jcea _/_/ _/_/ _/_/_/_/_/
jabber / xmpp:jcea@jabber.org _/_/ _/_/ _/_/ _/_/ _/_/
"Things are not so easy" _/_/ _/_/ _/_/ _/_/ _/_/ _/_/
"My name is Dump, Core Dump" _/_/_/ _/_/_/ _/_/ _/_/
"El amor es poner tu felicidad en la felicidad de otro" - Leibniz
I thought that KIP-687
<https://cwiki.apache.org/confluence/display/KAFKA/KIP-687%3A+Automatic+Reloading+of+Security+Store>
was available but "ssl.keystore.location.refresh.interval.ms" seems to
be silently ignored and not certificate reloading is done.
KIP-687 is marked as "accepted" in 2020, but I haven't found any
reference to it in the release notes of any Kafka release.
Is it actually available in Kafka 4.0?
If not, what is people doing to refresh certificates under Kraft, beside
manualy updating the certificate files and rebooting the
brokers/controllers?
Thanks.
--
Jesús Cea Avión _/_/ _/_/_/ _/_/_/
jcea@jcea.es - https://www.jcea.es/ _/_/ _/_/ _/_/ _/_/ _/_/
Twitter: @jcea _/_/ _/_/ _/_/_/_/_/
jabber / xmpp:jcea@jabber.org _/_/ _/_/ _/_/ _/_/ _/_/
"Things are not so easy" _/_/ _/_/ _/_/ _/_/ _/_/ _/_/
"My name is Dump, Core Dump" _/_/_/ _/_/_/ _/_/ _/_/
"El amor es poner tu felicidad en la felicidad de otro" - Leibniz
Comments
Post a Comment