Skip to main content

Re: Kafka OAuth authentication using OKTA

Hi Kirk,

 

Sorry I didn't realise that my query was replied.

I am following this blog  https://medium.com/@apoorv.adarsh/kafka-and-okta-a-delightful-duo-on-your-local-windows-environment-a5bab3456498

 

The change is I am performing the steps on Ubuntu.

I have made necessary changes to adopt the windows suitable declarations for Ubuntu.

 

I am getting the error – page not found from okta.

I am attaching the server.properties variant with the new details I added in addition to the defaults also the jaas config.

Here is the KAFKA_OPTS I exported –

 

export KAFKA_OPTS="-Djava.security.auth.login.config=/home/ubuntu/Downloads/kafka_2.12-3.7.2/config/kafka_sasl_oauth_jaas.conf -DclientId=0oanzubxpo3CA6xVV5d8 -DOAUTH_WITH_SSL=true -DOAUTH_LOGIN_SERVER=https://dev-83775998.okta.com/oauth2/default -DOAUTH_LOGIN_ENDPOINT=/oauth2/default/v1/token -DOAUTH_LOGIN_GRANT_TYPE=0oanzubxpo3CA6xVV5d8 -DOAUTH_LOGIN_SCOPE=kafka -DOAUTH_CHECK_AUDIENCE=false -DOAUTH_INTROSPECT_SERVER=https://dev-83775998.okta.com/oauth2/default -DOAUTH_INTROSPECT_ENDPOINT=/oauth2/default/v1/introspect -DOAUTH_AUTHORIZATION=Basic%20MG9hbnp1YnhwbzNDQTZ4VlY1ZDc6dk42aFZ5M0J4ODVBTVBON1pHT1NkeWVURVFBYmV0Q3ZzcWl6Q2dVMWtyRDFMejZGcEtHa3ZfbUh6V3MxWkVZbe== -DOAUTH_INTROSPECT_AUTHORIZATION=Basic%20MG9hbnp1YnhwbzNDQTZ4VlY1ZDc6dk42aFZ5M0J4ODVBTVBON1pHT1NkeWVURVFBYmV0Q3ZzcWl6Q2dVMWtyRDFMejZGcEtHa3ZfbUh6V3MxWkVZbe=="  

 

Please share your thoughts.

 

Thanks.

 

From: Kirk True <kirk@kirktrue.pro>
Date: Tuesday, 1 April 2025 at 6:08am
To: users@kafka.apache.org <users@kafka.apache.org>
Subject: Re: Kafka OAuth authentication using OKTA

EXTERNAL EMAIL - USE CAUTION when clicking links or attachments




Hi Anup,

I agree that the documentation could be improved.

Are you able to provide the steps you did try and the specific error message you're seeing?

Thanks,
Kirk

On Thu, Mar 27, 2025, at 10:02 AM, Shirolkar, Anup wrote:
> Hi Team,
>
> I am trying to setup Kafka authentication using OAuth with Okta as token provider.
> I am following a few online blogs but it is not completely working.
>
> There is no comprehensive documentation about this that I can use.
> Can someone please list down the steps needed for this.
>
> Thanks,
> Anup Shirolkar.
>

Comments

Post a Comment