search

Mongey / terraform-provider-kafka

Terraform provider for managing Apache Kafka Topics + ACLs
MIT License
520 stars 132 forks source link

Version 0.7.0 does error on aim auth in comparison to 0.6.0 #394

Open fritz-net opened 8 months ago

fritz-net commented 8 months ago

our module was auto updated and starting to fail. When setting version to 0.6.0 it worked again.

we use aim auth and tls


│             * kafka server: SASL Authentication failed: [e1940359-331e-448d-851e-0165a6d0db46]: Invalid authentication payload

│             * kafka server: SASL Authentication failed: [b9824777-2089-4db1-8b78-a8037af63b6a]: Invalid authentication payload
sappusaketh commented 8 months ago

which sasl auth are you using? will you be able to share provider config?

fritz-net commented 8 months ago

sure here:

provider "kafka" {
  bootstrap_servers = split(",", aws_msk_cluster.somename.bootstrap_brokers_sasl_iam)
  tls_enabled       = true
  sasl_mechanism    = "aws-iam" # https://github.com/Mongey/terraform-provider-kafka/pull/372
}

for me its not that urgent since reverting back to 0.6.0 made it work again :)

sappusaketh commented 8 months ago

so are you setting creds via env vars cause I made change just to include aws_profile or aws_role_arn i havent changed any of 0.6.0 behavior just trying to see what caused this

fritz-net commented 8 months ago

yes ( I thing - will check tomorrow ) we use env vars since they are secrets and its inside of a CI/CD pipeline

sappusaketh commented 8 months ago

Ok I will try it out with env vars and see if it works sorry I only tested with iam_role_arn

fritz-net commented 8 months ago

https://github.com/aws-actions/configure-aws-credentials this is what's used under the hood, so I guess its env vars