Add kafka SASL plain authentication support #9584
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
pracucci
requested review from
stevesg,
grafanabot,
a team and
tacole02
as code owners
pracucci
changed the title
Signed-off-by: Marco Pracucci <[email protected]>
Signed-off-by: Marco Pracucci <[email protected]>
Signed-off-by: Marco Pracucci <[email protected]>
Signed-off-by: Marco Pracucci <[email protected]>
Signed-off-by: Marco Pracucci <[email protected]>
pracucci
force-pushed
the
add-kafka-sasl-support
branch
from
0cc5f95 to
1b51166
Compare
gotjosh
approved these changes
Oct 11, 2024
| @@ -115,6 +120,9 @@ func (cfg *KafkaConfig) RegisterFlagsWithPrefix(prefix string, f *flag.FlagSet) | |||
| f.DurationVar(&cfg.WriteTimeout, prefix+".write-timeout", 10*time.Second, "How long to wait for an incoming write request to be successfully committed to the Kafka backend.") | |||
| f.IntVar(&cfg.WriteClients, prefix+".write-clients", 1, "The number of Kafka clients used by producers. When the configured number of clients is greater than 1, partitions are sharded among Kafka clients. A higher number of clients may provide higher write throughput at the cost of additional Metadata requests pressure to Kafka.") | |||
|
|
|||
| f.StringVar(&cfg.SASLUsername, prefix+".sasl-username", "", "The username used to authenticate to Kafka using the SASL plain mechanism. To enable SASL, configure both the username and password.") | |||
There was a problem hiding this comment.
nit: I'm not sure which patterns we follow and if its common that when requiring multiple config to be set it basically no-ops unless you set them all. The flag documentation is very clear that you need both hence why this is a nit, but...
I can see from the library that:
if auth.User == "" || auth.Pass == "" {
return nil, nil, errors.New("PLAIN user and pass must be non-empty")
}
hence the reasoning behind not setting it unless you get both, but I wonder if it's convenient to validate that here or let the error bubble up.
I'll leave the decision in your hands and this is considered a very nitpicky nit.
There was a problem hiding this comment.
I think we can add a validation in our config. Let me do it.
Signed-off-by: Marco Pracucci <[email protected]>
Signed-off-by: Marco Pracucci <[email protected]>
|
The backport to To backport manually, run these commands in your terminal: # Fetch latest updates from GitHub
git fetch
# Create a new branch
git switch --create backport-9584-to-r310 origin/r310
# Cherry-pick the merged commit of this pull request and resolve the conflicts
git cherry-pick -x 42284e756e4f6c10d9111444fe4cb53c138ce3e6
# Push it to GitHub
git push --set-upstream origin backport-9584-to-r310
git switch main
# Remove the local backport branch
git branch -D backport-9584-to-r310Then, create a pull request where the |
|
The backport to To backport manually, run these commands in your terminal: # Fetch latest updates from GitHub
git fetch
# Create a new branch
git switch --create backport-9584-to-r311 origin/r311
# Cherry-pick the merged commit of this pull request and resolve the conflicts
git cherry-pick -x 42284e756e4f6c10d9111444fe4cb53c138ce3e6
# Push it to GitHub
git push --set-upstream origin backport-9584-to-r311
git switch main
# Remove the local backport branch
git branch -D backport-9584-to-r311Then, create a pull request where the |
pracucci
added a commit
that referenced
this pull request
Oct 24, 2024
* Add SASL plain support to kafkatool Signed-off-by: Marco Pracucci <[email protected]> * Add SASL plain authentication support to Kafka client Signed-off-by: Marco Pracucci <[email protected]> * Update CHANGELOG Signed-off-by: Marco Pracucci <[email protected]> * Fix test compilation issue Signed-off-by: Marco Pracucci <[email protected]> * Address review feedback Signed-off-by: Marco Pracucci <[email protected]> * Add config validation Signed-off-by: Marco Pracucci <[email protected]> * Fix linter issue Signed-off-by: Marco Pracucci <[email protected]> --------- Signed-off-by: Marco Pracucci <[email protected]>
pracucci
added a commit
that referenced
this pull request
Oct 24, 2024
* Add SASL plain support to kafkatool Signed-off-by: Marco Pracucci <[email protected]> * Add SASL plain authentication support to Kafka client Signed-off-by: Marco Pracucci <[email protected]> * Update CHANGELOG Signed-off-by: Marco Pracucci <[email protected]> * Fix test compilation issue Signed-off-by: Marco Pracucci <[email protected]> * Address review feedback Signed-off-by: Marco Pracucci <[email protected]> * Add config validation Signed-off-by: Marco Pracucci <[email protected]> * Fix linter issue Signed-off-by: Marco Pracucci <[email protected]> --------- Signed-off-by: Marco Pracucci <[email protected]>
pracucci
added a commit
that referenced
this pull request
Oct 24, 2024
* Add SASL plain support to kafkatool Signed-off-by: Marco Pracucci <[email protected]> * Add SASL plain authentication support to Kafka client Signed-off-by: Marco Pracucci <[email protected]> * Update CHANGELOG Signed-off-by: Marco Pracucci <[email protected]> * Fix test compilation issue Signed-off-by: Marco Pracucci <[email protected]> * Address review feedback Signed-off-by: Marco Pracucci <[email protected]> * Add config validation Signed-off-by: Marco Pracucci <[email protected]> * Fix linter issue Signed-off-by: Marco Pracucci <[email protected]> --------- Signed-off-by: Marco Pracucci <[email protected]>
pracucci
added a commit
that referenced
this pull request
Oct 24, 2024
* Add SASL plain support to kafkatool Signed-off-by: Marco Pracucci <[email protected]> * Add SASL plain authentication support to Kafka client Signed-off-by: Marco Pracucci <[email protected]> * Update CHANGELOG Signed-off-by: Marco Pracucci <[email protected]> * Fix test compilation issue Signed-off-by: Marco Pracucci <[email protected]> * Address review feedback Signed-off-by: Marco Pracucci <[email protected]> * Add config validation Signed-off-by: Marco Pracucci <[email protected]> * Fix linter issue Signed-off-by: Marco Pracucci <[email protected]> --------- Signed-off-by: Marco Pracucci <[email protected]>
pracucci
added a commit
that referenced
this pull request
Oct 24, 2024
* Add SASL plain support to kafkatool Signed-off-by: Marco Pracucci <[email protected]> * Add SASL plain authentication support to Kafka client Signed-off-by: Marco Pracucci <[email protected]> * Update CHANGELOG Signed-off-by: Marco Pracucci <[email protected]> * Fix test compilation issue Signed-off-by: Marco Pracucci <[email protected]> * Address review feedback Signed-off-by: Marco Pracucci <[email protected]> * Add config validation Signed-off-by: Marco Pracucci <[email protected]> * Fix linter issue Signed-off-by: Marco Pracucci <[email protected]> --------- Signed-off-by: Marco Pracucci <[email protected]>
pracucci
added a commit
that referenced
this pull request
Oct 24, 2024
* Add SASL plain support to kafkatool Signed-off-by: Marco Pracucci <[email protected]> * Add SASL plain authentication support to Kafka client Signed-off-by: Marco Pracucci <[email protected]> * Update CHANGELOG Signed-off-by: Marco Pracucci <[email protected]> * Fix test compilation issue Signed-off-by: Marco Pracucci <[email protected]> * Address review feedback Signed-off-by: Marco Pracucci <[email protected]> * Add config validation Signed-off-by: Marco Pracucci <[email protected]> * Fix linter issue Signed-off-by: Marco Pracucci <[email protected]> --------- Signed-off-by: Marco Pracucci <[email protected]>
pracucci
added a commit
that referenced
this pull request
Oct 24, 2024
* Add SASL plain support to kafkatool Signed-off-by: Marco Pracucci <[email protected]> * Add SASL plain authentication support to Kafka client Signed-off-by: Marco Pracucci <[email protected]> * Update CHANGELOG Signed-off-by: Marco Pracucci <[email protected]> * Fix test compilation issue Signed-off-by: Marco Pracucci <[email protected]> * Address review feedback Signed-off-by: Marco Pracucci <[email protected]> * Add config validation Signed-off-by: Marco Pracucci <[email protected]> * Fix linter issue Signed-off-by: Marco Pracucci <[email protected]> --------- Signed-off-by: Marco Pracucci <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What this PR does
Add SASL plain authentication support to Kafka client both to Mimir and kafkatool. I also manually tested these changes.
Which issue(s) this PR fixes or relates to
N/A
Checklist
CHANGELOG.mdupdated - the order of entries should be[CHANGE],[FEATURE],[ENHANCEMENT],[BUGFIX].about-versioning.mdupdated with experimental features.