The purpose of the library is to improve the out of box Kafka security features, by providing concrete OAuth2 implementation of authentication and authorization for Kafka based on Kafka OAuth Security Framework.
The library utilizes KeyCloak as the OAuth server, but other OAuth servers could be used.
Learn more here.
- Modern industry standard – ability to expire/refresh credentials for long running processes without downtime
- Enterprise grade – support of centralized management and segregation of duties in operation
- DX focused – capability of deployment time configuration
- Not to support other Kafka security frameworks or plugins.
Prerequisite
- Install and configure JDK Version 8
- Install and configure Maven
- Install and configure Git Client
Instructions for how to download/install the code onto your machine.
Clone repository to your local machine:
git clone '{REPO_URL}'Install project dependencies
mvn install- Compile the project
mvn compile- It is recommended that you follow the guides in the order outlined below.
- Prerequisites
- Port 8080 open for local KeyCloak
- KeyCloak Configuration
- Kafka OAuth Configuration
- Test Consumer Configuration
- Test Producer Configuration
Contributions are welcomed! Read the Contributing Guide for more information.
- Create a GitHub issue
See LICENSE for more information.
Copyright © 2020 BlackRock Inc.
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
This project was inspired by: