...
Token are stored in Zookeeper as properties in the path /tokenauth/tokens/<token-id><tokenUID>
Code Block | ||||
---|---|---|---|---|
| ||||
// SCRAM credentials for tokenID token123: Zookeeper persistence path /tokens/token123 { "version":1, "owner" : "owner", "renewer" : "renewer", "maxLifeTime" : "maxLifeTime", "tokenIdtokenUID" : "tokenIdtokenUID" }; |
SCRAM Extensions
SCRAM messages have an optional extensions field which is a comma-separated list of key=value pairs.
After KIP-84 implementation , an extension will be added to the first client SCRAM message to indicate
that authentication is being requested for a delegation token. This will enable Kafka broker to obtain
credentials and principal using a different code path for delegation tokens.
...