Versions Compared

Old Version 43

changes.mady.by.user Manikumar Reddy O.

Saved on

compared with

New Version 44

changes.mady.by.user Manikumar Reddy O.

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

ExpireTokenRequest
Code Block
ExpireTokenRequest => HMAC expiryTimestamp
  HMAC => bytes

  expiryTimestamp => INT64
 

Field

Description

HMAC

HMAC of the delegation token to be renewed

expiryTimestamp
Token expiry timestamp. Unit is milliseconds since beginning of the epoch (midnight Jan 1, 1970 (UTC)).

ExpireTokenResponse
Code Block
ExpireTokenResponse => ErrorCode
  ErroCode => INT32
Possible Error Codes
* AuthorizationException
InvalidateTokenRequest
Code Block
InvalidateTokenRequest => HMAC 
  HMAC => bytes

 

InvalidateTokenResponse
Code Block
InvalidateTokenResponse => ErrorCode
  ErroCode => INT32
Possible Error Codes
* AuthorizationException

Configuration options

The following options will be added to KafkaConfig.java and can be configured as properties for Kafka server:

  1. delegation.token.max.lifetime.sec : The token has a maximum lifetime beyond which it cannot be renewed any more. Default value 7 days.
  2. delegation.token.expiry.time.sec : The token validity time in seconds before the token needs to be renewed. Default value 1 day.
  3. delegation.token.master.key : Secret/masterKey to generate and verify delegation tokens. This masterKey needs to be configured with all the brokers.

...