kafka-rest icon indicating copy to clipboard operation
kafka-rest copied to clipboard

Published 20 hours ago verified publisher icon confluentinc

Is Authorization or ACLs are supported in Kafka-Rest

Open amitgurav04 opened this issue 6 years ago • 3 comments

Suppose, I have two clients A and B. and two topics T1 and T2.

Client A want to send the message on topic T1. But he should not able to send message on topic T2 .

Client B want to send the message on topic T2. But he should not able to send message on topic T1 .

Can we add such authorization in Kafka-rest? Which we can do in Kafka broker using ACLS.

Please help me on this.

Thanks in advance.

amitgurav04 avatar Dec 31 '18 09:12 amitgurav04

Hey there @amitgurav04, I'm afraid the rest proxy does not currently support your requested feature. It currently supports proxy->broker authentication, but not user->proxy.

Feel free to check out our documentation on the matter: https://docs.confluent.io/current/kafka-rest/docs/security.html

stanislavkozlovski avatar Jan 11 '19 19:01 stanislavkozlovski

kafka-rest uses jetty severlet, you can Override configurePreResourceHandling from Application in KafkaRestApplication and add a filter to ServletContextHandler

pecanNBU avatar Jun 14 '19 10:06 pecanNBU

The confluent security plugin(available under a Confluent enterprise license) supports this. https://docs.confluent.io/current/confluent-security-plugins/kafka-rest/introduction.html

mithunmanohar avatar Aug 13 '20 09:08 mithunmanohar