...
Furthermore, the key/trust store reloading is a completely separate feature from AlterConfigs. It does not change any persistent broker config values in either ZK or metadata quorum. It should be sent directly to the target broker for security store reload, not the active controller, which adds up additional network traffic overhead. We should have a separate RPC for this use case in the post KIP-500 broker, as well as maintaining the legacy AlterConfig approach in the older admin clients.
Public Interfaces
Briefly list any new interfaces that will be introduced as part of this proposal or any existing interfaces that will be removed or changed. The purpose of this section is to concisely call out the public contract that will come along with this feature.
A public interface is any change to the following:
Binary log format
The network protocol and api behavior
Any class in the public packages under clientsConfiguration, especially client configuration
org/apache/kafka/common/serialization
org/apache/kafka/common
org/apache/kafka/common/errors
org/apache/kafka/clients/producer
org/apache/kafka/clients/consumer (eventually, once stable)
Monitoring
Command line tools and arguments
- Anything else that will likely break existing users in some way when they upgrade
Proposed Changes
...
A new RPC `SecurityStoreReload` shall be added to be specifically
Proposed Changes
Compatibility, Deprecation, and Migration Plan
To summarize, we already take care of every possible combinations of broker/client versions, plus the API being used.
Broker Version | Client Version | Admin API | Expected Behavior |
---|---|---|---|
old | new | alterConfig | work with a warning log |
old | new | storeReload | work with the underlying request translating to AlterConfigRequest |
new | new | alterConfig | Not work, |
must use storeReload API | |||
new | new | storeReload | work |
new | old | alterConfig | work, with active controller sending a storeReload request to the target broker |
old | old | alterConfig | N/A |
Rejected Alternatives
If there are alternative ways of accomplishing the same thing, what were they? The purpose of this section is to motivate why the design is the way it is and not some other way.