...
Configuration of SSL / TLS for the Kafka Connect REST interface will follow the configuration for other SSL / TLS enabled server interfaces. It will be done through the properties configuration file for the distributed Kafka Connect workers. It will add following new options:
Parameter | Default value | Note |
---|---|---|
| PLAINTEXT | Other valid value will be SSL. |
rest.ssl.keystore.location | null | |
rest.ssl.keystore.password | null | |
rest.ssl.keystore.type | JKS | |
rest.ssl.key.password | null | |
rest.ssl.truststore.location | null | |
rest.ssl.truststore.password | null | |
rest.ssl.truststore.type | JKS | |
rest.ssl.enabled.protocols | TLSv1.2,TLSv1.1,TLSv1 | |
rest.ssl.provider | null | |
rest.ssl.protocol | TLS | |
rest.ssl.cipher.suites | null | |
rest.ssl.keymanager.algorithm | SunX509 | |
rest.ssl.secure.random.implementation | null | |
rest.ssl.trustmanager.algorithm | PKIX | |
rest.ssl.client.auth | none | Other valid values are "required" and "requested" |
The rest.security.protocol
option will support only PLAINTEXT
and SSL
values. PLAINTEXT
will be the default value and will keep all SSL/TLS functionality disabled to keep the backwards compatibility.
...