...

This page is meant as a template for writing a KIP. To create a KIP choose Tools->Copy on this page and modify with your content and replace the heading with the next KIP number and a description of your issue. Replace anything in italics with your own description.

Status

Current state: Under Discussion Rejected [One of "Under Discussion", "Accepted", "Rejected"]

Discussion thread: here

JIRA: 

Please keep the discussion on the mailing list rather than commenting on the wiki (wiki discussions get unwieldy fast).

...

The options accepted by kafka-configs.sh command will change:

• --zookeeper will be deprecatedremoved, which means it will display a warning message saying that it's ignored.
• --bootstrap-server option will be added: it has a parameter which is an endpoint to a broker (or a comma separated list of brokers)
• --adminclient.config option will be added: a file path to an admin client configuration properties file
• --adminclient-property option will be added: a comma separated list of configurations ('k1=v1,k2=v2') for the admin client

Protocol Changes

KIP-133 introduced the describe and alter admin protocols and KIP-140 a wire format representation for ResourceType. We will modify these to accommodate the new requirements.

Wire Format Types

ResourceType

• 0: Unknown

• 1: Any

• 2: Topic

• 3: Group

• 4: Broker

• 5: User (new)

• 6: Client (new)

QuotaType (new)

• 0: ProducerByteRate
• 1: ConsumerByteRate
• 2: RequestPercentage

QuotaSource (new)

• 0: Self
• 1: Default
• 2: Parent

Describe Quotas

The justification for a new protocol is that a quota is quite different from a broker or topic config because a quota can sometimes be identified a simple user, client or even a (user,client) tuple while a topic or a broker config can be identified only by the topic's name or the broker's ID. Moreover quotas have their own well defined types.

DescribeQuotas Request (Version: 1) => [resource]
  resource => [quota_resource] [quota_type]
    quota_resource => type name
      type => INT8
      name => STRING
    quota_type => INT8

Request semantics:

1. Can be sent to any broker
2. If the name is empty it means that listing the default quota is asked. Responses will be returned the same way for defaults.
3. If the quota_type array is empty, all quotas are returned. Otherwise, quotas with the provided types are returned.
4. Authorization:  "DescribeQuotas" can only be interpreted on the "Cluster" resource and represented by the DescribeConfigs ACL due to the similarity in use cases. Unauthorized requests will receive an appropriate AuthorizationFailed error code.

• functionality won't be available. The design decision behind is that the ConfigCommand tool will be rewritten in the tools module which doesn't depend on the core module. This makes it hard to provide backward compatibility with the current ConfigCommand.
• --bootstrap-server was added in

  Jira
  server ASF JIRA columns key,summary,type,created,updated,due,assignee,reporter,priority,status,resolution serverId 5aa69414-a9e9-3523-82ec-879b028fb15b key KAFKA-6494

   and will be used here.
• --adminclient.config option will be added and should be used similarly to other tools, such as --producer.config in the console-producer. This parses a config file and initializes the admin client used internally.
• --adminclient-property option will be added. It is a key=value list that will be parsed by the command. It initializes the internal admin client.

A new tool, called scram-credentials.sh will be added. The need for this broker is when people use zookeeper as a credentials store for SCRAM (and currently users have no other option), then direct interaction with zookeeper is required to set up the initial credentials with inter-broker communication. The functionality of the tool will cover the following:

• Add, remove and list SCRAM credentials directly with zookeeper
• Will continue to use the --zookeeper option to specify the zookeeper host
• Works similarly to the old config command. Examples:
  • Add new credentials:
    bin/scram-credentials.sh --zookeeper localhost:2181 --add 'SCRAM-SHA-256=[iterations=8192,password=alice-secret],SCRAM-SHA-512=[password=alice-secret]' --username alice
  • Describe credentials: 
    bin/scram-credentials.sh --zookeeper localhost:2181 --describe --username alice
  • Remove credentials:
    bin/scram-credentials.sh --zookeeper localhost:2181 --delete 'SCRAM-SHA-512' --username alice

Protocol Changes

KIP-133 introduced the describe and alter admin protocols and KIP-140 a wire format representation for ResourceType. We will modify these to accommodate the new requirements.

Wire Format Types

ResourceType

• 0: Unknown

• 1: Any

• 2: Topic

• 3: Group

• 4: Broker

• 5: User (new)

• 6: Client (new)

QuotaType (new)

• 0: ProducerByteRate
• 1: ConsumerByteRate
• 2: RequestPercentage

QuotaSource (new)

• 0: ClientInUser
• 1: DefaultClientInUser
• 2: User
• 3: ClientInDefaultUser
• 4: DefaultClientInDefaultUser
• 5: DefaultUser
• 6: Client
• 7: DefaultClient

Field Types

Double

A new type needs to be added to transfer quota values. Since the protocol classes in Kafka already uses ByteBuffers it is logical to use their functionality for serializing doubles. The serialization is basically a representation of the specified floating-point value according to the IEEE 754 floating-point "double format" bit layout. The ByteBuffer serializer writes eight bytes containing the given double value, in Big Endian byte order, into this buffer at the current position, and then increments the position by eight.

The implementation will be defined in org.apache.kafka.common.protocol.types with the other protocol types and it will have no default value much like the other types available in the protocol.

Describe Quotas

The justification for a new protocol is that a quota is quite different from a broker or topic config because a quota can sometimes be identified a simple user, client or even a (user,client) tuple while a topic or a broker config can be identified only by the topic's name or the broker's ID. Moreover quotas have their own well defined types.

DescribeQuotas Request (Version: 0) => [resource]
  resource => [quota_resource] [quota_type]
    quota_resource => type name
      type => INT8
      name => STRING
    quota_type => INT8

Request semantics:

1. Can be sent to any broker
2. If the name is empty it means that listing the default quota is asked. Responses will be returned the same way for defaults.
3. If the quota_type array is empty, all quotas are returned. Otherwise, quotas with the provided types are returned.
4. Authorization:  "DescribeQuotas" can only be interpreted on the "Cluster" resource and represented by the DescribeConfigs ACL due to the similarity in use cases. Unauthorized requests will receive an appropriate AuthorizationFailed error code.

DescribeQuotas Response (Version: 0) => throttle_time_ms [resource]
  throttle_time_ms => INT32
  resource => [quota_resource] [quota]
    quota_resource => type name
      type => INT8
      name => STRING
    quota_collection => error_code error_message [quota_entry]
      error_code => INT16
      error_message => NULLABLE_STRING
      quota_entry => quota_type quota_value quota_source
        quota_type => INT8
        quota_value => DOUBLE
        quota_source => INT8

Alter Quotas

AlterQuota Request (Version: 0) => validate_only [resource]
  validate_only => BOOLEAN
  resource => [quota_resource] [quota]
    quota_resource => type name
      type => INT8
      name => STRING
    quota => quota_type quota_value
      quota_type => INT8
      quota_value => DOUBLE

Request Semantics

1. Can be sent to any broker
2. If name is empty it means that altering a default quota is asked.
3. Authorization:  "AlterQuotas" can only be interpreted on the "Cluster" resource and represented by the AlterConfigs ACL due to the similarity in use cases. Unauthorized requests will receive an appropriate AuthorizationFailed error code.
4. For tools that allow users to alter quota configs, a validation/dry-run mode where validation errors are reported but no creation is attempted is available via the validate_only parameter.
5. The AlterQuotas protocol has an incremental semantics. By this we mean that the request will update only those quotas which are sent in the request. 
6. Removing quotas will be done by sending a NaN as the value.

AlterQuotas Response (Version: 0) => throttle_time_ms [resource]
  throttle_time_ms => INT32
  resource => [quota_resource] [quota]
    quota_resource => type name
      type => INT8
      name => STRING
    quota => error_code error_message quota_type
      error_code => INT16
      error_message => NULLABLE_STRING
      quota_type => INT8

AlterConfigs

This request needs some change as currently the --add-config operation of ConfigCommand would do incremental operations in Zookeeper but the AlterConfigs protocol sets the whole properties object. The purpose of this change to add an boolean parameter to the request so that it can specify the behavior (incremental or set) which needs to be executed. 

AlterConfigs Request (Version: 1) => [resources] validate_only incremental_update
  validate_only => BOOLEAN
  incremental_update => BOOLEAN                                           // new addition
  resources => resource_type resource_name [configs]
    resource_

DescribeQuotas Response (Version: 1) => throttle_time_ms [resource]
  throttle_time_ms => INT32
  resource => [quota_resource] [quota]
    quota_resource => type name
      type => INT8
      resource_name => STRING
    quotaconfigs => errorconfig_codename error_message [quota_entry]config_value
      errorconfig_codename => INT16STRING
      errorconfig_messagevalue => NULLABLE_STRING
      quota_entry => quota_type quota_value quota_source
        quota_type => INT8STRING

Request Semantics:

1. The default value of incremental_update is false. That means that the request will wipe the node's data and sets what is sent in the request.
2. Setting the incremental_update flag to true makes sure that existing configs are not deleted.
3. Deleting a config in incremental mode is done by sending an empty string as value.
4. Other existing semantics aren't changed.

AdminClient APIs

public static class Quota {
    public QuotaType type();
    public   double quota_value => DOUBLEvalue();
    public   QuotaSource quota_source => INT8

Alter Quotas

AlterQuota Request (Version: 0) => validate_only [resource]
  validate_only => BOOLEAN);
}

public enum QuotaType {
  resource => [quota_resource] [quota] PRODUCER_BYTE_RATE((byte) 0, "producer_byte_rate"),
    quota_resource => type nameCONSUMER_BYTE_RATE((byte) 1, "consumer_byte_rate"),
    REQUEST_PERCENTAGE((byte)  type => INT8
      name => STRING2, "request_percentage");

    QuotaType(byte id, String name);
    quotapublic => quota_type quota_value
byte id();
    public String  quota_type => INT8quotaName();
}

public enum QuotaSource {
      quota_value => DOUBLE

Request Semantics

1. Can be sent to any broker
2. If name is empty it means that altering a default quota is asked.
3. Authorization:  "AlterQuotas" can only be interpreted on the "Cluster" resource and represented by the AlterConfigs ACL due to the similarity in use cases. Unauthorized requests will receive an appropriate AuthorizationFailed error code.
4. For tools that allow users to alter quota configs, a validation/dry-run mode where validation errors are reported but no creation is attempted is available via the validate_only parameter.

AlterQuotas Response (Version: 0) => throttle_time_ms [resource]
  throttle_time_ms => INT32
  resource => [quota_resource] [quota]
    quota_resource => type name
      type => INT8
      name => STRING
    quota => error_code error_message quota_type
      error_code => INT16
      error_message => NULLABLE_STRING
      quota_type => INT8

DescribeConfigs and AlterConfigs (SCRAM)

To enable describing and altering SCRAM credentials we will use the DescribeConfigs and AlterConfigs protocols. There are no changes in the protocol's structure but we will allow the USER resource type to be passed in the protocol. When this happens, the server will know that SCRAM configs are asked and will send them in the response.  In case of AlterConfigs if a USER resource type is passed it will validate if there are only SCRAM credentials are changed. If not, then will fail with InvalidRequestException.

AdminClient APIs

public static class QuotaCLIENT_OF_USER((byte) 0, "Client of user"),
    DEFAULT_CLIENT_OF_USER((byte) 1, "Default client of user"),
    USER((byte) 2, "User"),
    CLIENT_OF_DEFAULT_USER((byte) 3, "Client of default user"),
    DEFAULT_CLIENT_OF_DEFAULT_USER((byte) 4, "Default client of default user"),
    DEFAULT_USER((byte) 5, "Default user"), CLIENT((byte) 6, "Client"),
    DEFAULT_CLIENT((byte) 7, "Default client");

    QuotaSource(byte id, String description);
    public byte id();
    public String description();
}
 
/**
 * Makes sure that the list of resources that is used as key in a hashmap is immutable and has a fixed implementation for the hashCode.
 */
public class ConfigResourceList {
    public List<ConfigResource> getResourceList();
 
public class AdminClient {
    public QuotaTypeDescribeQuotasResult type(describeQuotas(Map<ConfigResourceList, Collection<QuotaType>>, DescribeQuotasOptions options);
    public AlterQuotasResult  public double value();alterQuotas(Map<ConfigResourceList, Collection<Quota>> configs, AlterQuotasOptions options);
}
public class DescribeQuotasOptions extends AbstractOptions<DescribeQuotasOptions>  { 
    public DescribeQuotasOptions timeoutMs(Integer timeout);
}

public class DescribeQuotasResult {
    public Map<List<Resource>, QuotaSourceKafkaFuture<Collection<Quota>>> sourcevalues();
}
 
public staticclass AlterQuotasOptions enumextends QuotaTypeAbstractOptions<AlterQuotasOptions> { 
    PRDOUCER_BYTE_RATE(0), CONSUMER_BYTE_RATE(1), REQUEST_PERCENTAGE(2);

    QuotaType(byte id);

    public byte idpublic AlterQuotasOptions timeoutMs(Integer timeout);
	public AlterQuotasOptions validateOnly(boolean validateOnly);
}

public class AlterQuotasResult {
    public Map<List<Resource>, KafkaFuture<Void>> results();
}
 
publicpublic class staticAlterConfigsOptions enumextends QuotaSourceAbstractOptions<AlterConfigsOptions> {
    SELF(0), DEFAULT(1), PARENT(2);
 
	QuotaSource(byte id);
 public AlterConfigsOptions timeoutMs(Integer timeoutMs);
    public byteAlterConfigsOptions idvalidateOnly(boolean validateOnly);
}
 
/**
 * Represents a listpublic of Resource objects that have a hierarchical relationship.
 * For instance one could represent relationship like "clientA of user1".
 */
public class ResourceList {
boolean shouldValidateOnly();
    public AlterConfigsOptions incrementalUpdate(boolean incrementalUpdate); // new
    public boolean shouldUpdateIncrementally(); // new
}

Request API

public class QuotaCollection {
	public QuotaCollection(ApiError error, Collection<Quota> entries);

    public ResourceList(String user, String clientQuotaCollection(Collection<Quota> entries);

    public ApiError error();
    public Collection<Quota> ResourceList(ResourceType type, String resourceNameentries();
}
 
public class DescribeQuotasRequest  /**
     * Returns the list of resources in a top to bottom (first to last) order.
     */
    public List<Resource> resources();
}
 
/**
 * A helper class that makes sure that a given collection of Quota objects
 * are immutably stored and can be accessed.
 */
public class QuotaCollection {
    public QuotaCollection(Collection<Quota> entries);
 
    public Collection<Quota> entriesextends AbstractRequest {
	
	public static Schema[] schemaVersions();
	public static DescribeQuotasRequest parse(ByteBuffer buffer, short version);
 
	public static class Builder extends AbstractRequest.Builder {
		public Builder(Map<List<Resource>, Collection<QuotaType>> quotaSettings);
		public DescribeQuotasRequest build(short version);
	}
 
	public DescribeQuotasRequest(short version, Map<List<Resource>, Collection<QuotaType>> quotaSettings);
	public DescribeQuotasRequest(Struct struct, short version);
 
	public Map<List<Resource>, Collection<QuotaType>> quotaTypes();
}

public class DescribeQuotasResponse extends AbstractResponse {
	public static Schema[] schemaVersions();

	public DescribeQuotasResponse(int throttleTimeMs, Map<ConfigResourceList, KafkaFuture<Collection<Quota>>>);
	public DescribeQuotasResponse(Struct struct);

	public Map<List<Resource>, QuotaCollection> quotas();
}
 
/**
 * This public class actsAlterQuotasRequest asextends an alias for a HashMap that maps a list of Resource
 * objects which represents hierarchical
 */
public class QuotaResourceMap extends HashMap<ResourceList, T> {
    public QuotaResourceMap(ResourceList key, T value);
    public QuotaResourceMap(Map<ResourceList, T>AbstractRequest {
	public static Schema[] schemaVersions();
 
	public static class Builder extends AbstractRequest.Builder {
		public Builder(Map<List<Resource>, QuotaCollection> quotaSettings);
		public DescribeQuotasRequest build(short version);
	}
 
	public AlterQuotasRequest(short version, Map<List<Resource>, QuotaCollection> quotas, boolean validateOnly);
	public AlterQuotasRequest(Struct struct, short version);
 
	public Map<List<Resource>, QuotaCollection> quotas();
}
 
public class AlterQuotasResponse extends AdminClientAbstractResponse {
	public static Schema[] schemaVersions();
 
	public DescribeQuotasResult describeQuotas(QuotaResourceMap<Collection<QuotaType>>, DescribeQuotasOptions options);
    public AlterQuotasResult alterQuotas(QuotaResourceMap<QuotaCollection> configs, AlterQuotasOptions options);
}
public class DescribeQuotasOptions {  AlterQuotasRequest(short version, Map<List<Resource>, ApiError> quotas, boolean validateOnly);
	public AlterQuotasRequest(Struct struct, short version);
 
	public Map<List<Resource>, ApiError> errors();
    public DescribeQuotasOptionsint timeoutMsthrottleTimeMs(Integer timeout);
}

public class DescribeQuotasResult {
    public QuotaResourceMap<KafkaFuture<QuotaCollection>> values();
}
 
public class AlterQuotasOptions { 
    public AlterQuotasOptions timeoutMs(Integer timeout);
	public AlterQuotasOptions validateOnly(boolean validateOnly);
}

public class AlterQuotasResult {
    public QuotaResourceMap<KafkaFuture<Void>> results();
}

Request API

public class QuotaCollection {
	public QuotaCollection(ApiError error, Collection<Quota> entries);

    public QuotaCollection(Collection<Quota> entries);

    public ApiError error();
    public Collection<Quota> entries();
}
 
public class DescribeQuotasRequest extends AbstractRequest {
	
	public static Schema[] schemaVersions();
	public static DescribeQuotasRequest parse(ByteBuffer buffer, short version);
 
	public static class Builder extends AbstractRequest.Builder {
		public Builder(QuotaResourceMap<Collection<QuotaType>> quotaSettings);
		public DescribeQuotasRequest build(short version);
	}
 
	public DescribeQuotasRequest(short version, QuotaResourceMap<Collection<QuotaType>> quotaSettings);
	public DescribeQuotasRequest(Struct struct, short version);
 
	public QuotaResourceMap<Collection<QuotaType>> quotas();
}

public class DescribeQuotasResponse extends AbstractResponse {
	public static Schema[] schemaVersions();

	public DescribeQuotasResponse(int throttleTimeMs, QuotaResourceMap<QuotaCollection> quotas);
	public DescribeQuotasResponse(Struct struct);

	public QuotaResourceMap<QuotaCollection> quotas();
}
 
public class AlterQuotasRequest extends AbstractRequest {
	public static Schema[] schemaVersions();
 
	public static class Builder extends AbstractRequest.Builder {
		public Builder(QuotaResourceMap<QuotaCollection> quotaSettings);
		public DescribeQuotasRequest build(short version);
	}
 
	public AlterQuotasRequest(short version, QuotaResourceMap<QuotaCollection> quotas, boolean validateOnly);
	public AlterQuotasRequest(Struct struct, short version);
 
	public QuotaResourceMap<QuotaCollection> quotas();
}
 
public class AlterQuotasResponse extends AbstractResponse {
	public static Schema[] schemaVersions();
 
	public AlterQuotasRequest(short version, QuotaResourceMap<ApiError> quotas, boolean validateOnly);
	public AlterQuotasRequest(Struct struct, short version);
 
	public QuotaResourceMap<ApiError> errors();
    public int throttleTimeMs();
}

New Command Line Interface

The kafka-config.sh command line interface will change a little bit in terms of help message and response format as we will use argparse4j for parsing arguments.

Help Message

New Command Line Interface

The kafka-config.sh command line interface will change a little bit in terms of help message and response format as we will use argparse4j for parsing arguments.

Help Message

usage: config-command [-h] --entity-type {topics,clients,users,brokers}
                      [--force FORCE] [--add-config ADDCONFIG]
                      [--delete-config DELETECONFIG]
                      (--entity-name ENTITYNAME | --entity-default)
                      (--describe | --alter)
                      (--bootstrap-server BOOTSTRAPSERVERS |
                      --adminclient.config CONFIGPROPERTIES |
                      --adminclient-property ADMINCLIENTPROPERTY)

Change configs for topics, clients, users, brokers dynamically.

optional arguments:
  -h, --help             show this help message and exit
 

usage: config-command [-h] --entity-type {topics,clients,users,brokers}
                         [--force FORCE] [--add-config ADDCONFIG]
REQUIRED:      the       type       of     [--delete-config DELETECONFIG]
 entity
                         (--entity-name ENTITYNAME | --entity-default)
topics/clients/users/brokers)
  --force FORCE          Suppresses console prompts
  --add-config ADDCONFIG
                         Key  Value  pairs  of (--describe | --alter)
configs   to  add.  Square
               (--bootstrap-servers BOOTSTRAPSERVERS |
        brackets  can  be  used   to  group  values --config.properties CONFIGPROPERTIES)

Change configs for topics, clients, users, brokers dynamically.

optional arguments:
  -h, --help which
                         contain show this help message and exitcommas: 'k1=v1,k2=[v1,v2,v2],k3=v3'.
  --entitydelete-type {topics,clients,users,brokers}config DELETECONFIG
                         REQUIRED:Config keys to remove in  the following form: 'k1,
    type       of      entity
        k2'.

  You can specify only one in --entity-name         (topics/clients/users/brokers)and --entity-default

  ---force FORCEentity-name ENTITYNAME
             Suppresses console prompts
  --add-config ADDCONFIG
       Name of entity (client id/user principal name)
  --entity-default       Default entity name Keyfor  Valueclients/users (applies pairsto
  of   configs   to  add.  Square
             corresponding entity type in command line)

  You can specify only  brackets  can  be  usedone in --alter, --describe

  --describe      to  group  values  which
 List  configs  for  the  given  entity.  (default:
            contain commas: 'k1=v1,k2=[v1,v2,v2],k3=v3'.
  --delete-config DELETECONFIG
        false)
  --alter               Config keysAlter tothe removeconfiguration infor  the followingentity. form: 'k1,(default:
                         k2'.false)

   REQUIRED. You can specify only one in --entitybootstrap-nameservers, and --entity-defaultadminclient.config

  --entitybootstrap-nameserver ENTITYNAMEBOOTSTRAPSERVER
                         The  broker  list Name string of entityin (client id/userthe principal name)form
  --entity-default       Default entity name for  clients/users (applies to
         HOST1:PORT1,HOST2:PORT2.
  --command-config COMMANDCONFIG
             corresponding   entity type in command line)

  You can specify onlyThe one inconfig --alter, --describe

  --describe     properties  file  for  the
         List  configs  for  the  given  entity.  (default:
    Admin Client.

Process finished with exit code 0

Output Format

               false)
  --alter                Alter the configuration for  the entity. (default:
            CONFIGS FOR TOPIC topicA

          false)

  You can specify only one in --bootstrap-servers, --config.properties

  --bootstrap-servers BOOTSTRAPSERVERS
               Name   Value       REQUIRED: The  broker  list  string  in  the  form
            Sensitive  Read-only           HOST1:PORT1,HOST2:PORT2.
  --config.properties CONFIGPROPERTIES
   Source
                      REQUIRED:  The compression.type config= producer properties  file  for  the
                         Admin Client.

Processfalse finished with exit code 0

Output Format

  false         Default config
                   message.format.version = 1.0-IV0                     CONFIGS FOR TOPIC topicA

          false      false         Default config
           Name   Value       file.delete.delay.ms = 6000                       Sensitive  Read-only  Default
          false      false   Dynamic topic config
    compression.typeleader.replication.throttled.replicas = producer                                 false      false  false   true
   false         Default config
      message.format.version = 1.0-IV0                max.message.bytes = 1000012                false      false     true
       false      false        file.delete.delay.ms = 60000 Default config
                    min.compaction.lag.ms = 0              false      false     true
    leader.replication.throttled.replicas =          false      false         Default config
                false   message.timestamp.type = CreateTime false     true
                        max.message.bytes =false 1000012     false         Default config
                   false   min.insync.replicas = 1 false     true
                    min.compaction.lag.ms = 0            false      false         Default config
            false      false     true
 segment.jitter.ms = 0                message.timestamp.type = CreateTime                      false      false   false      falseDefault config
    true
                      min.insync.replicas = 1  preallocate = false                                    false      false     true
    Default config
                     segmentindex.jitterinterval.msbytes = 04096                                     false   false   false   false     true
 Default config
                min.cleanable.dirty.ratio = 0.5          preallocate = false                          false      false    false      falseDefault config
    true
       unclean.leader.election.enable = false            index.interval.bytes = 4096                      false      false         falseDefault config
     false     true
                min.cleanable.dirty.ratioretention.bytes = 0.510                                       false      false   Dynamic topic trueconfig
           unclean.leader.election.enable = false         delete.retention.ms = 86400000                         false      false  false   true
   false         Default config
             retention.bytes = 10            cleanup.policy =   delete                       false      false    false
    false      false         Default config
  delete.retention.ms = 86400000                             flush.ms = 9223372036854775807  false      false     true
         false      false         Default config
  cleanup.policyfollower.replication.throttled.replicas = delete                                   false      false     true
 false         Default config
                      flush.ms = 9223372036854775807    segment.bytes = 1073741824                false      false     true
  follower.replication.throttled.replicas = false      false         Default config
                         false    retention.ms = false     true
604800000                             segment.bytes = 1073741824 false      false         Default config
              false      false     true
      segment.ms = 604800000                     retention.ms = 604800000         false      false         Default config
       false message.timestamp.difference.max.ms = 9223372036854775807     false     true
            false      false         Default config
   segment.ms = 604800000                      flush.messages = 9223372036854775807        false      false     true
   false   message.timestamp.difference.max.ms = 9223372036854775807 false         Default config
           false      false     true
  segment.index.bytes = 10485760                         flush.messages = 9223372036854775807      false      false         Default falseconfig
      false     true
            producer.byte.rate = 1000        segment.index.bytes = 10485760                           false      false      false     trueDefault user

As seen above, the describe format becomes more organized and it will also return default properties (as the protocol currently supports that). In case of alter we will also do an extra describe after executing the alter and print the most fresh state.

Compatibility, Deprecation, And Migration Plan

Compatibility

Firstly, behavior of the the --zookeeper  command line parameter will change. After this change it will print a warning message saying its ignored. Therefore option will be removed from kafka-configs.sh and the backing code will be replaced. Therefore every user will need to change --zookeeper to --bootstrap-servers, --adminclient-property or --adminclient.config. adminclient-property or --adminclient.config. SCRAM update will be done by the newly introduced scram-credentials.sh tool. Other existing behavior will be kept.

Secondly, users as of this KIP would be able to describe all topics or brokers in one step but can't do it for clients and users. For those who have this use case will would still need to use the old command for a while (see below). The reason for this change is currently MetadataRequest provides enough information about topics and brokers so it's possible to describe all of them in one step but there's no such information about clients and users.

Finally, backward compatibilty (for instance a 12.1 0 client wants to admin a 1.0 server) will be impacted as some of the protocols are newly created and doesn't exist in old servers. In these cases users should continue using the scala version of the ConfigCommand by putting the core jar on their classpath and defining the USE_OLD_COMMAND=true environment variable. This variable will set the main class to the old command in the config and invokes that. This way the environment variable ensures that users who aren't able to use the new command currently would need to make minimal changes in order to continue using it. of the protocols are newly created and doesn't exist in old servers. In these cases users should continue using the scala version of the ConfigCommand by putting the core jar on their classpath.

The old Alternatively though the command could be launched through kafka-run-class.sh like this:

...

From the compatibility point of view there might be a bigger impact as mentioned above. Since the command now uses the wire protocols (including some newly introduced ones) the backward compatibility will be impacted. That means that a user can't use a 12.1 0 client to administrate a 1.0 broker as in the older broker some of the wire protocols don't exist. This again should be acceptable most of the users as most of the admin commands require the core jar on the classpath which means that most of the time the commands are executed from an environment with the same version of the brokers. In the remaining cases users will have to change to use kafka-run-class or the USE_OLD_COMMAND environment variableof the brokers. Therefore the old tool should still be available.

Deprecation

kafka.admin.ConfigCommand will print a warning message saying it is deprecated and will be removed in a future version 2.0.

To ease the migration for users who are stuck with this command, the USE_OLD_COMMAND will be introduced.

Special Migration Tools

There are no tools required.

...

The current --zookeeper option will be disabled removed with this change as it has minimal impact on the current users.

Listing multiple users' and clients' quotas at once won't be possible. If this is required, users would need to use the old tool.

Test Plan

Most of the functionality can be covered with end-to-end tests. There will be unit tests also to verify the protocol and the broker side logic.

...