Page Information

Title:	KIP-255 OAuth Authentication via SASL/OAUTHBEARER
Author:	Ron Dagostino	Feb 14, 2018
Last Changed by:	Ron Dagostino	Feb 03, 2020
Tiny Link: (useful for email)	https://cwiki-test.apache.org/confluence/x/bDGHB
Export As:	Word · PDF

Incoming Links

Apache Kafka (3)
Page: KIP-432: Additional Broker-Side Opt-In for Default, Unsecure SASL/OAUTHBEARER Implementation
Page: Kafka Improvement Proposals
Page: Release Plan 2.0.0 (June 2018)

Hierarchy

Parent Page
Page: Kafka Improvement Proposals

Labels

There are no labels assigned to this page.

Recent Changes

Time	Editor
Feb 03, 2020 20:40	Ron Dagostino	View Changes
Adopted in v2.0
May 21, 2018 16:32	Ron Dagostino	View Changes
Changed status to "Accepted" as per the vote at https://lists.apache.org/thread.html/0f22ce533b981224c44dc208ef9b72e99a499665223cfe720fd1b8b0@%3Cdev.kafka.apache.org%3E
May 17, 2018 14:53	Ron Dagostino	View Changes
Added "Summary for Production Use" section and clarified that two refresh-related parameters are ignored if their sum exceeds the token lifetime.
May 01, 2018 01:58	Ron Dagostino	View Changes
fixed typos, further simplified unsecured token validation by making the 'sub' claim the default place to go for the principal name.
May 01, 2018 00:39	Ron Dagostino
Responded to latest feedback, creating default callback handlers to minimize out-of-the-box configuration requirements and moving refresh configs out of JAAS