kafka

History

Proven Provenzano 38c409cf33 KAFKA-14084: SCRAM support in KRaft. (#13114 ) This commit adds support to store the SCRAM credentials in a cluster with KRaft quorum servers and no ZK cluster backing the metadata. This includes creating ScramControlManager in the controller, and adding support for SCRAM to MetadataImage and MetadataDelta. Change UserScramCredentialRecord to contain only a single tuple (name, mechanism, salt, pw, iter) rather than a mapping between name and a list. This will avoid creating an excessively large record if a single user has many entries. Because record ID 11 (UserScramCredentialRecord) has not been used before, this is a compatible change. SCRAM will be supported in 3.5-IV0 and later. This commit does not include KIP-900 SCRAM bootstrapping support, or updating the credential cache on the controller (as opposed to broker). We will implement these in follow-on commits. Reviewers: Manikumar Reddy <manikumar.reddy@gmail.com>, Colin P. McCabe <cmccabe@apache.org>	2023-03-03 10:23:34 -08:00
..
main/java/org/apache/kafka	KAFKA-14084: SCRAM support in KRaft. (#13114 )	2023-03-03 10:23:34 -08:00
test	MINOR: Simplify JUnit assertions in tests; remove accidental unnecessary code in tests (#13219 )	2023-02-16 16:13:31 +01:00

Proven Provenzano 38c409cf33

KAFKA-14084: SCRAM support in KRaft. (#13114 )

This commit adds support to store the SCRAM credentials in a cluster with KRaft quorum servers and
no ZK cluster backing the metadata. This includes creating ScramControlManager in the controller,
and adding support for SCRAM to MetadataImage and MetadataDelta.

Change UserScramCredentialRecord to contain only a single tuple (name, mechanism, salt, pw, iter)
rather than a mapping between name and a list. This will avoid creating an excessively large record
if a single user has many entries. Because record ID 11 (UserScramCredentialRecord) has not been
used before, this is a compatible change. SCRAM will be supported in 3.5-IV0 and later.

This commit does not include KIP-900 SCRAM bootstrapping support, or updating the credential cache
on the controller (as opposed to broker). We will implement these in follow-on commits.

Reviewers: Manikumar Reddy <manikumar.reddy@gmail.com>, Colin P. McCabe <cmccabe@apache.org>

2023-03-03 10:23:34 -08:00

main/java/org/apache/kafka

KAFKA-14084: SCRAM support in KRaft. (#13114 )

2023-03-03 10:23:34 -08:00

test

MINOR: Simplify JUnit assertions in tests; remove accidental unnecessary code in tests (#13219 )

2023-02-16 16:13:31 +01:00