-Dcom.sun.management.jmxremote.port=9101
-Dcom.sun.management.jmxremote.authenticate=false
KAFKA_METRIC_REPORTERS: com.linkedin.kafka.cruisecontrol.metricsreporter.CruiseControlMetricsReporter
- KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9091
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9092
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_SECURITY_PROTOCOL: SASL_PLAINTEXT
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_SASL_MECHANISM: PLAIN
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_SASL_JAAS_CONFIG: org.apache.kafka.common.security.plain.PlainLoginModule required username="ccreporter" password="ccreporter-secret";
KAFKA_LISTENER_NAME_DOCKER_SASL_ENABLED_MECHANISMS: PLAIN
KAFKA_LISTENER_NAME_DOCKER_PLAIN_SASL_JAAS_CONFIG: |
org.apache.kafka.common.security.plain.PlainLoginModule required \
user_schemaregistry="schemaregistry-secret" \
user_connect="connect-secret" \
+ user_ccreporter="ccreporter-secret" \
+ user_ui="ui-secret" \
user_client="client-secret";
KAFKA_LISTENER_NAME_LOCALHOST_SASL_ENABLED_MECHANISMS: PLAIN
KAFKA_LISTENER_NAME_LOCALHOST_PLAIN_SASL_JAAS_CONFIG: |
-Dcom.sun.management.jmxremote.port=9101
-Dcom.sun.management.jmxremote.authenticate=false
KAFKA_METRIC_REPORTERS: com.linkedin.kafka.cruisecontrol.metricsreporter.CruiseControlMetricsReporter
- KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9091
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9092
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_SECURITY_PROTOCOL: SASL_PLAINTEXT
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_SASL_MECHANISM: PLAIN
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_SASL_JAAS_CONFIG: org.apache.kafka.common.security.plain.PlainLoginModule required username="ccreporter" password="ccreporter-secret";
KAFKA_LISTENER_NAME_DOCKER_SASL_ENABLED_MECHANISMS: PLAIN
KAFKA_LISTENER_NAME_DOCKER_PLAIN_SASL_JAAS_CONFIG: |
org.apache.kafka.common.security.plain.PlainLoginModule required \
user_schemaregistry="schemaregistry-secret" \
user_connect="connect-secret" \
+ user_ccreporter="ccreporter-secret" \
+ user_ui="ui-secret" \
user_client="client-secret";
KAFKA_LISTENER_NAME_LOCALHOST_SASL_ENABLED_MECHANISMS: PLAIN
KAFKA_LISTENER_NAME_LOCALHOST_PLAIN_SASL_JAAS_CONFIG: |
-Dcom.sun.management.jmxremote.port=9101
-Dcom.sun.management.jmxremote.authenticate=false
KAFKA_METRIC_REPORTERS: com.linkedin.kafka.cruisecontrol.metricsreporter.CruiseControlMetricsReporter
- KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9091
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9092
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_SECURITY_PROTOCOL: SASL_PLAINTEXT
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_SASL_MECHANISM: PLAIN
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_SASL_JAAS_CONFIG: org.apache.kafka.common.security.plain.PlainLoginModule required username="ccreporter" password="ccreporter-secret";
KAFKA_LISTENER_NAME_DOCKER_SASL_ENABLED_MECHANISMS: PLAIN
KAFKA_LISTENER_NAME_DOCKER_PLAIN_SASL_JAAS_CONFIG: |
org.apache.kafka.common.security.plain.PlainLoginModule required \
user_schemaregistry="schemaregistry-secret" \
user_connect="connect-secret" \
+ user_ccreporter="ccreporter-secret" \
+ user_ui="ui-secret" \
user_client="client-secret";
KAFKA_LISTENER_NAME_LOCALHOST_SASL_ENABLED_MECHANISMS: PLAIN
KAFKA_LISTENER_NAME_LOCALHOST_PLAIN_SASL_JAAS_CONFIG: |
-Dcom.sun.management.jmxremote.port=9101
-Dcom.sun.management.jmxremote.authenticate=false
KAFKA_METRIC_REPORTERS: com.linkedin.kafka.cruisecontrol.metricsreporter.CruiseControlMetricsReporter
- KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9091
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9092
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_SECURITY_PROTOCOL: SASL_PLAINTEXT
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_SASL_MECHANISM: PLAIN
+ KAFKA_CRUISE_CONTROL_METRICS_REPORTER_SASL_JAAS_CONFIG: org.apache.kafka.common.security.plain.PlainLoginModule required username="ccreporter" password="ccreporter-secret";
KAFKA_LISTENER_NAME_DOCKER_SASL_ENABLED_MECHANISMS: PLAIN
KAFKA_LISTENER_NAME_DOCKER_PLAIN_SASL_JAAS_CONFIG: |
org.apache.kafka.common.security.plain.PlainLoginModule required \
user_schemaregistry="schemaregistry-secret" \
user_connect="connect-secret" \
+ user_ccreporter="ccreporter-secret" \
+ user_ui="ui-secret" \
user_client="client-secret";
KAFKA_LISTENER_NAME_LOCALHOST_SASL_ENABLED_MECHANISMS: PLAIN
KAFKA_LISTENER_NAME_LOCALHOST_PLAIN_SASL_JAAS_CONFIG: |
schema-registry:
image: confluentinc/cp-schema-registry:7.5.1
environment:
- SCHEMA_REGISTRY_KAFKASTORE_BOOTSTRAP_SERVERS: kafka-1:9091,kafka-2:9091,kafka-3:9091
+ SCHEMA_REGISTRY_KAFKASTORE_BOOTSTRAP_SERVERS: kafka-1:9092,kafka-2:9092,kafka-3:9092
SCHEMA_REGISTRY_HOST_NAME: schema-registry
SCHEMA_REGISTRY_LISTENERS: http://0.0.0.0:8085
SCHEMA_REGISTRY_LOG4J_ROOT_LOGLEVEL: INFO
+ SCHEMA_REGISTRY_KAFKASTORE_SECURITY_PROTOCOL: SASL_PLAINTEXT
+ SCHEMA_REGISTRY_KAFKASTORE_SASL_MECHANISM: PLAIN
+ SCHEMA_REGISTRY_KAFKASTORE_SASL_JAAS_CONFIG: >
+ org.apache.kafka.common.security.plain.PlainLoginModule
+ required
+ username="schemaregistry"
+ password="schemaregistry-secret";
ports:
- 8085:8085
depends_on:
connect:
image: confluentinc/cp-kafka-connect:7.5.1
environment:
- CONNECT_BOOTSTRAP_SERVERS: kafka-1:9091,kafka-2:9091,kafka-3:9091
+ CONNECT_BOOTSTRAP_SERVERS: kafka-1:9092,kafka-2:9092,kafka-3:9092
CONNECT_REST_PORT: 8083
CONNECT_REST_LISTENERS: http://0.0.0.0:8083
CONNECT_REST_ADVERTISED_HOST_NAME: connect
CONNECT_CONFIG_STORAGE_REPLICATION_FACTOR: 1
CONNECT_STATUS_STORAGE_REPLICATION_FACTOR: 1
CONNECT_PLUGIN_PATH: /usr/share/java/
+ # Configure the Connect workers to use SASL/PLAIN.
+ CONNECT_SASL_MECHANISM: PLAIN
+ CONNECT_SECURITY_PROTOCOL: SASL_PLAINTEXT
+ # JAAS
+ CONNECT_SASL_JAAS_CONFIG: >
+ org.apache.kafka.common.security.plain.PlainLoginModule required
+ username="connect"
+ password="connect-secret";
+ # producer
+ CONNECT_PRODUCER_SASL_MECHANISM: PLAIN
+ CONNECT_PRODUCER_SECURITY_PROTOCOL: SASL_PLAINTEXT
+ CONNECT_PRODUCER_SASL_JAAS_CONFIG: >
+ org.apache.kafka.common.security.plain.PlainLoginModule required
+ username="connect"
+ password="connect-secret";
+ # consumer
+ CONNECT_CONSUMER_SASL_MECHANISM: PLAIN
+ CONNECT_CONSUMER_SECURITY_PROTOCOL: SASL_PLAINTEXT
+ CONNECT_CONSUMER_SASL_JAAS_CONFIG: >
+ org.apache.kafka.common.security.plain.PlainLoginModule required
+ username="connect"
+ password="connect-secret";
+
ports:
- 8083:8083
depends_on:
connections:
docker-kafka-server:
properties:
- bootstrap.servers: "kafka:9091"
+ bootstrap.servers: "kafka:9092"
+ security.protocol: SASL_PLAINTEXT
+ sasl.mechanism: PLAIN
+ sasl.jaas.config: org.apache.kafka.common.security.plain.PlainLoginModule required username="ui" password="ui-secret";
schema-registry:
url: "http://schema-registry:8085"
connect:
- kafka-3
producer:
- image: juplo/simple-producer:1.0-SNAPSHOT
- command: kafka:9092 test producer
+ image: juplo/endless-stream-spring-producer:1.0-SNAPSHOT
+ environment:
+ producer.throttle-ms: 1
+ spring.kafka.bootstrap-servers: kafka-1:9092, kafka-2:9092, kafka-3:9092
+ spring.kafka.client-id: producer
+ spring.kafka.template.default-topic: test
+ spring.kafka.producer.properties.linger.ms: 100
+ spring.kafka.jaas.enabled: "true"
+ spring.kafka.properties.security.protocol: SASL_PLAINTEXT
+ spring.kafka.properties.sasl.mechanism: PLAIN
+ spring.kafka.properties.sasl.jaas.config: org.apache.kafka.common.security.plain.PlainLoginModule required username="client" password="client-secret";
consumer-1:
image: juplo/spring-consumer:1.0-SNAPSHOT
environment:
spring.kafka.bootstrap-servers: kafka-1:9092, kafka-2:9092, kafka-3:9092
spring.kafka.client-id: consumer-1
+ spring.kafka.jaas.enabled: "true"
+ spring.kafka.properties.security.protocol: SASL_PLAINTEXT
+ spring.kafka.properties.sasl.mechanism: PLAIN
+ spring.kafka.properties.sasl.jaas.config: org.apache.kafka.common.security.plain.PlainLoginModule required username="client" password="client-secret";
consumer-2:
image: juplo/spring-consumer:1.0-SNAPSHOT
environment:
spring.kafka.bootstrap-servers: kafka-1:9092, kafka-2:9092, kafka-3:9092
spring.kafka.client-id: consumer-1
+ spring.kafka.jaas.enabled: "true"
+ spring.kafka.properties.security.protocol: SASL_PLAINTEXT
+ spring.kafka.properties.sasl.mechanism: PLAIN
+ spring.kafka.properties.sasl.jaas.config: org.apache.kafka.common.security.plain.PlainLoginModule required username="client" password="client-secret";
consumer-3:
image: juplo/spring-consumer:1.0-SNAPSHOT
environment:
spring.kafka.bootstrap-servers: kafka-1:9092, kafka-2:9092, kafka-3:9092
spring.kafka.client-id: consumer-1
+ spring.kafka.jaas.enabled: "true"
+ spring.kafka.properties.security.protocol: SASL_PLAINTEXT
+ spring.kafka.properties.sasl.mechanism: PLAIN
+ spring.kafka.properties.sasl.jaas.config: org.apache.kafka.common.security.plain.PlainLoginModule required username="client" password="client-secret";
volumes:
zookeeper-data:
projects / demos / kafka / training / blobdiff