devshawn / kafka-gitops

🚀Manage Apache Kafka topics and generate ACLs through a desired state file.
https://devshawn.github.io/kafka-gitops
Apache License 2.0
320 stars 71 forks source link

Question, adding keystore/truststore to kafka-gitops CLI #63

Closed afshinyavari closed 3 years ago

afshinyavari commented 3 years ago

Hi,

Im considering using this on our cluster with mTLS with certificates for authentication. Is it possible to pass truststore and keystore when running the kafka-gitops CLI?

Thanks,

thunter commented 3 years ago

I figured out that its possible, you need to set the following environment variables:

export KAFKA_SECURITY_PROTOCOL=SSL
export KAFKA_SSL_TRUSTSTORE_LOCATION=<path to truststore>
export KAFKA_SSL_KEYSTORE_LOCATION=<path to keystore>
export KAFKA_SSL_KEYSTORE_PASSWORD=<keystore password>
export KAFKA_SSL_KEY_PASSWORD=<key password>
export KAFKA_SSL_TRUSTSTORE_PASSWORD=<truststore password>
export KAFKA_BOOTSTRAP_SERVERS=$brokers_tls
afshinyavari commented 3 years ago

Thank you!