THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
Sources of an audit system are where the auditing information is initially generated. Kafka server could be a source since it can access every request and its response.
Terminology
Auditor: The generator of the initial auditing information. It is usually embedded in another application/service. For example, it could be a pluggable broker component that can inspect all requests and responses on a broker.
Proposed Changes
Define an Observer interface and provide a no-operation observer implementation. The observer can be used to store and report auditing statistics and etc.
Add a configuration property in the KafkaConfig class to allow users to specify the specific implementation of the Observer interface. The default value of this added field is the NoOpObserver which is provided as part of this KIP.
Add simple logic to allow Kafka servers to report auditing statistics. More specifically, change KafkaApis code to invoke the auditor for request-response pairs. Implementation of the interface is provided by users.
Public Interfaces
Observer interface. Observers are instantiated by calling the no-arg constructor, then the configure() method is called, and then close() is called with no further record() calls expected.
:
Code Block language scala title Observer linenumbers true /**
...
...
The Observer interface. This class allows user to implement their own auditing solution.
...
* Notice that the Observer may be used by multiple threads, so the implementation should be thread safe.
...
...
*/ trait Observer extends Configurable {
...
/*
...
* Record the request and response pair based on the given information.
...
...
*/ def record(request: RequestChannel.Request, response: AbstractResponse): Unit
...
/
...
*
...
* Close the observer with timeout.
...
* @param timeout the maximum time to wait to close the observer. * @param unit The time unit.
...
*/ def close(timeout: Long, unit: TimeUnit): Unit
...
| Code Block | ||||||
|---|---|---|---|---|---|---|
| ||||||
/** ********* Broker-side Observer Configuration ****************/
val ObserverClassProp = "observer.class.name"
|
...
}
...
Observers are instantiated by calling the no-arg constructor, then the configure() method is called, and then close() is called with no further record() calls expected.
With this interface and the given type of RequestChannel.Request and AbstractResponse, the information we can extract from every produce or fetch request is:Topic name
Client principal
Client IP address
Number of bytes produced or consumed
Records count (if the batch version is 2 or greater, otherwise a deep decompression is required to get the count)
...
Add a configuration property in the KafkaConfig class to allow users to specify implementations of the Observer interface:
Code Block language scala title
...
Configuration property linenumbers true
...
/** ********* Broker-side Observer
...
Configuration ****************/ val ObserverClassProp = "observer.class.names"Add code to the broker (in KafkaApis) to allow Kafka servers to invoke any observers defined. More specifically, change KafkaApis code to invoke all defined observers, in the order in which they were defined, for every request-response pair.
Compatibility, Deprecation, and Migration Plan
N/A. The no-operation observer is used No observers are defined by default. Test of any other non-trivial implementation should be done by its implementers. Exceptions thrown by any of the observer APIs (s) should be caught and the functionalities of the broker should not be affected.
...