Closed joncourt closed 6 years ago
everesio
commented
6 years ago By default the proxy will pass pass through the SASL_PLAIN. The flags "auth-local-*" allows you to perform SASL auth on the proxy itself (different methods are possible). This is to add security for environments where SASL_PLAIN is not configured on the brokers
joncourt
commented
6 years ago Ahh. The reverse of what I thought auth local was. I’ll take that paradigm shift and have another look. Thanks for the response.
On 5/10/2018, at 8:22 PM, Michal Budzyn notifications@github.com wrote:
By default the proxy will pass pass through the SASL_PLAIN. The flags "auth-local-*" allows you to perform SASL auth on the proxy itself (different methods are possible). This is to add security for environments where SASL_PLAIN is not configured on the brokers
— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub, or mute the thread.
everesio
commented
6 years ago You are welcome
QUESTION:
Hi,
For SASL_PLAIN - does this pass through the SASL that i put on my clients to the brokers or is it intended to have it's own SASL credentials which are used for all upstream clients?
Background I'm having a play with this against confluent cloud with little success so far. I'm attempting to use it as a proxy because the CCloud brokers are in an external vpc which i can't connect directly to.
Regards, Jon