X-Git-Url: https://juplo.de/gitweb/?a=blobdiff_plain;f=docker%2Fdocker-compose.yml;h=1d3172b6a9821ae52fe3e82c46eb20dc8e38928c;hb=015d988cf6961eb3a2f05a346bf453755d58f70b;hp=e2e48917bb01f34ffaf93f56033423e60973c582;hpb=2d71ed4a0d33b15dee824ab75dbaa49c55d1218c;p=demos%2Fkafka%2Ftraining diff --git a/docker/docker-compose.yml b/docker/docker-compose.yml index e2e4891..1d3172b 100644 --- a/docker/docker-compose.yml +++ b/docker/docker-compose.yml @@ -14,9 +14,9 @@ services: image: confluentinc/cp-kafka:7.5.1 environment: KAFKA_ZOOKEEPER_CONNECT: zookeeper:2181 - KAFKA_LISTENERS: BROKER://:9092, LOCALHOST://:9081 - KAFKA_LISTENER_SECURITY_PROTOCOL_MAP: BROKER:PLAINTEXT, LOCALHOST:PLAINTEXT - KAFKA_ADVERTISED_LISTENERS: BROKER://kafka-1:9092, LOCALHOST://localhost:9081 + KAFKA_LISTENERS: BROKER://:9091, DOCKER://:9092, LOCALHOST://:9081 + KAFKA_LISTENER_SECURITY_PROTOCOL_MAP: BROKER:PLAINTEXT, DOCKER:SASL_PLAINTEXT, LOCALHOST:SASL_PLAINTEXT + KAFKA_ADVERTISED_LISTENERS: BROKER://kafka-1:9091, DOCKER://kafka-1:9092, LOCALHOST://localhost:9081 KAFKA_BROKER_ID: 1 KAFKA_INTER_BROKER_LISTENER_NAME: BROKER KAFKA_OFFSETS_TOPIC_REPLICATION_FACTOR: 3 @@ -29,7 +29,19 @@ services: -Dcom.sun.management.jmxremote.port=9101 -Dcom.sun.management.jmxremote.authenticate=false KAFKA_METRIC_REPORTERS: com.linkedin.kafka.cruisecontrol.metricsreporter.CruiseControlMetricsReporter - KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9092 + KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9091 + KAFKA_LISTENER_NAME_DOCKER_SASL_ENABLED_MECHANISMS: PLAIN + KAFKA_LISTENER_NAME_DOCKER_PLAIN_SASL_JAAS_CONFIG: | + org.apache.kafka.common.security.plain.PlainLoginModule required \ + user_schemaregistry="schemaregistry-secret" \ + user_connect="connect-secret" \ + user_client="client-secret"; + KAFKA_LISTENER_NAME_LOCALHOST_SASL_ENABLED_MECHANISMS: PLAIN + KAFKA_LISTENER_NAME_LOCALHOST_PLAIN_SASL_JAAS_CONFIG: | + org.apache.kafka.common.security.plain.PlainLoginModule required \ + user_client="client-secret"; + KAFKA_INTER_BROKER_LISTENER_NAME: BROKER + KAFKA_SASL_ENABLED_MECHANISMS: PLAIN, SCRAM-SHA-256, SCRAM-SHA-512 volumes: - ./jmx-exporter.yml:/etc/jmx-exporter.yml:ro - ./cruise-control-metrics-reporter.jar:/usr/share/java/kafka/cruise-control-metrics-reporter.jar:ro @@ -44,9 +56,9 @@ services: image: confluentinc/cp-kafka:7.5.1 environment: KAFKA_ZOOKEEPER_CONNECT: zookeeper:2181 - KAFKA_LISTENERS: BROKER://:9092, LOCALHOST://:9082 - KAFKA_LISTENER_SECURITY_PROTOCOL_MAP: BROKER:PLAINTEXT, LOCALHOST:PLAINTEXT - KAFKA_ADVERTISED_LISTENERS: BROKER://kafka-2:9092, LOCALHOST://localhost:9082 + KAFKA_LISTENERS: BROKER://:9091, DOCKER://:9092, LOCALHOST://:9082 + KAFKA_LISTENER_SECURITY_PROTOCOL_MAP: BROKER:PLAINTEXT, DOCKER:SASL_PLAINTEXT, LOCALHOST:SASL_PLAINTEXT + KAFKA_ADVERTISED_LISTENERS: BROKER://kafka-2:9091, DOCKER://kafka-2:9092, LOCALHOST://localhost:9082 KAFKA_BROKER_ID: 2 KAFKA_INTER_BROKER_LISTENER_NAME: BROKER KAFKA_OFFSETS_TOPIC_REPLICATION_FACTOR: 3 @@ -59,7 +71,19 @@ services: -Dcom.sun.management.jmxremote.port=9101 -Dcom.sun.management.jmxremote.authenticate=false KAFKA_METRIC_REPORTERS: com.linkedin.kafka.cruisecontrol.metricsreporter.CruiseControlMetricsReporter - KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9092 + KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9091 + KAFKA_LISTENER_NAME_DOCKER_SASL_ENABLED_MECHANISMS: PLAIN + KAFKA_LISTENER_NAME_DOCKER_PLAIN_SASL_JAAS_CONFIG: | + org.apache.kafka.common.security.plain.PlainLoginModule required \ + user_schemaregistry="schemaregistry-secret" \ + user_connect="connect-secret" \ + user_client="client-secret"; + KAFKA_LISTENER_NAME_LOCALHOST_SASL_ENABLED_MECHANISMS: PLAIN + KAFKA_LISTENER_NAME_LOCALHOST_PLAIN_SASL_JAAS_CONFIG: | + org.apache.kafka.common.security.plain.PlainLoginModule required \ + user_client="client-secret"; + KAFKA_INTER_BROKER_LISTENER_NAME: BROKER + KAFKA_SASL_ENABLED_MECHANISMS: PLAIN, SCRAM-SHA-256, SCRAM-SHA-512 volumes: - ./jmx-exporter.yml:/etc/jmx-exporter.yml:ro - ./cruise-control-metrics-reporter.jar:/usr/share/java/kafka/cruise-control-metrics-reporter.jar:ro @@ -79,9 +103,9 @@ services: image: confluentinc/cp-kafka:7.5.1 environment: KAFKA_ZOOKEEPER_CONNECT: zookeeper:2181 - KAFKA_LISTENERS: BROKER://:9092, LOCALHOST://:9083 - KAFKA_LISTENER_SECURITY_PROTOCOL_MAP: BROKER:PLAINTEXT, LOCALHOST:PLAINTEXT - KAFKA_ADVERTISED_LISTENERS: BROKER://kafka-3:9092, LOCALHOST://localhost:9083 + KAFKA_LISTENERS: BROKER://:9091, DOCKER://:9092, LOCALHOST://:9083 + KAFKA_LISTENER_SECURITY_PROTOCOL_MAP: BROKER:PLAINTEXT, DOCKER:SASL_PLAINTEXT, LOCALHOST:SASL_PLAINTEXT + KAFKA_ADVERTISED_LISTENERS: BROKER://kafka-3:9091, DOCKER://kafka-3:9092, LOCALHOST://localhost:9083 KAFKA_BROKER_ID: 3 KAFKA_INTER_BROKER_LISTENER_NAME: BROKER KAFKA_OFFSETS_TOPIC_REPLICATION_FACTOR: 3 @@ -94,7 +118,19 @@ services: -Dcom.sun.management.jmxremote.port=9101 -Dcom.sun.management.jmxremote.authenticate=false KAFKA_METRIC_REPORTERS: com.linkedin.kafka.cruisecontrol.metricsreporter.CruiseControlMetricsReporter - KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9092 + KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9091 + KAFKA_LISTENER_NAME_DOCKER_SASL_ENABLED_MECHANISMS: PLAIN + KAFKA_LISTENER_NAME_DOCKER_PLAIN_SASL_JAAS_CONFIG: | + org.apache.kafka.common.security.plain.PlainLoginModule required \ + user_schemaregistry="schemaregistry-secret" \ + user_connect="connect-secret" \ + user_client="client-secret"; + KAFKA_LISTENER_NAME_LOCALHOST_SASL_ENABLED_MECHANISMS: PLAIN + KAFKA_LISTENER_NAME_LOCALHOST_PLAIN_SASL_JAAS_CONFIG: | + org.apache.kafka.common.security.plain.PlainLoginModule required \ + user_client="client-secret"; + KAFKA_INTER_BROKER_LISTENER_NAME: BROKER + KAFKA_SASL_ENABLED_MECHANISMS: PLAIN, SCRAM-SHA-256, SCRAM-SHA-512 volumes: - ./jmx-exporter.yml:/etc/jmx-exporter.yml:ro - ./cruise-control-metrics-reporter.jar:/usr/share/java/kafka/cruise-control-metrics-reporter.jar:ro @@ -109,9 +145,9 @@ services: image: confluentinc/cp-kafka:7.5.1 environment: KAFKA_ZOOKEEPER_CONNECT: zookeeper:2181 - KAFKA_LISTENERS: BROKER://:9092, LOCALHOST://:9084 - KAFKA_LISTENER_SECURITY_PROTOCOL_MAP: BROKER:PLAINTEXT, LOCALHOST:PLAINTEXT - KAFKA_ADVERTISED_LISTENERS: BROKER://kafka-4:9092, LOCALHOST://localhost:9084 + KAFKA_LISTENERS: BROKER://:9091, DOCKER://:9092, LOCALHOST://:9084 + KAFKA_LISTENER_SECURITY_PROTOCOL_MAP: BROKER:PLAINTEXT, DOCKER:SASL_PLAINTEXT, LOCALHOST:SASL_PLAINTEXT + KAFKA_ADVERTISED_LISTENERS: BROKER://kafka-4:9091, DOCKER://kafka-4:9092, LOCALHOST://localhost:9084 KAFKA_BROKER_ID: 4 KAFKA_INTER_BROKER_LISTENER_NAME: BROKER KAFKA_OFFSETS_TOPIC_REPLICATION_FACTOR: 3 @@ -124,7 +160,19 @@ services: -Dcom.sun.management.jmxremote.port=9101 -Dcom.sun.management.jmxremote.authenticate=false KAFKA_METRIC_REPORTERS: com.linkedin.kafka.cruisecontrol.metricsreporter.CruiseControlMetricsReporter - KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9092 + KAFKA_CRUISE_CONTROL_METRICS_REPORTER_BOOTSTRAP_SERVERS: localhost:9091 + KAFKA_LISTENER_NAME_DOCKER_SASL_ENABLED_MECHANISMS: PLAIN + KAFKA_LISTENER_NAME_DOCKER_PLAIN_SASL_JAAS_CONFIG: | + org.apache.kafka.common.security.plain.PlainLoginModule required \ + user_schemaregistry="schemaregistry-secret" \ + user_connect="connect-secret" \ + user_client="client-secret"; + KAFKA_LISTENER_NAME_LOCALHOST_SASL_ENABLED_MECHANISMS: PLAIN + KAFKA_LISTENER_NAME_LOCALHOST_PLAIN_SASL_JAAS_CONFIG: | + org.apache.kafka.common.security.plain.PlainLoginModule required \ + user_client="client-secret"; + KAFKA_INTER_BROKER_LISTENER_NAME: BROKER + KAFKA_SASL_ENABLED_MECHANISMS: PLAIN, SCRAM-SHA-256, SCRAM-SHA-512 volumes: - ./jmx-exporter.yml:/etc/jmx-exporter.yml:ro - ./cruise-control-metrics-reporter.jar:/usr/share/java/kafka/cruise-control-metrics-reporter.jar:ro @@ -138,7 +186,7 @@ services: cruise-control: image: juplo/cruise-control environment: - BOOTSTRAP_SERVERS: kafka-1:9092,kafka-2:9092,kafka-3:9092 + BOOTSTRAP_SERVERS: kafka-1:9091,kafka-2:9091,kafka-3:9091 ZOOKEEPER_CONNECT: zookeeper:2181/ ports: - "9090:9090" @@ -150,6 +198,13 @@ services: SCHEMA_REGISTRY_HOST_NAME: schema-registry SCHEMA_REGISTRY_LISTENERS: http://0.0.0.0:8085 SCHEMA_REGISTRY_LOG4J_ROOT_LOGLEVEL: INFO + SCHEMA_REGISTRY_KAFKASTORE_SECURITY_PROTOCOL: SASL_PLAINTEXT + SCHEMA_REGISTRY_KAFKASTORE_SASL_MECHANISM: PLAIN + SCHEMA_REGISTRY_KAFKASTORE_SASL_JAAS_CONFIG: > + org.apache.kafka.common.security.plain.PlainLoginModule + required + username="schemaregistry" + password="schemaregistry-secret"; ports: - 8085:8085 depends_on: @@ -160,7 +215,7 @@ services: connect: image: confluentinc/cp-kafka-connect:7.5.1 environment: - CONNECT_BOOTSTRAP_SERVERS: kafka-1:9092,kafka-2:9092,kafka-3:9092 + CONNECT_BOOTSTRAP_SERVERS: kafka-1:9091,kafka-2:9091,kafka-3:9091 CONNECT_REST_PORT: 8083 CONNECT_REST_LISTENERS: http://0.0.0.0:8083 CONNECT_REST_ADVERTISED_HOST_NAME: connect @@ -200,38 +255,38 @@ services: - bash - -c - | - cub kafka-ready -b kafka-1:9092,kafka-2:9092,kafka-3:9092 3 60 > /dev/null 2>&1 || exit 1 + cub kafka-ready -b kafka-1:9091,kafka-2:9091,kafka-3:9091 3 60 > /dev/null 2>&1 || exit 1 if [ -e INITIALIZED ] then echo -n Bereits konfiguriert: cat INITIALIZED - kafka-topics --bootstrap-server kafka:9092 --describe --topic test - kafka-topics --bootstrap-server kafka:9092 --describe --topic __CruiseControlMetrics + kafka-topics --bootstrap-server kafka:9091 --describe --topic test + kafka-topics --bootstrap-server kafka:9091 --describe --topic __CruiseControlMetrics else - kafka-topics --bootstrap-server kafka:9092 \ + kafka-topics --bootstrap-server kafka:9091 \ --delete \ --if-exists \ --topic test - kafka-topics --bootstrap-server kafka:9092 \ + kafka-topics --bootstrap-server kafka:9091 \ --create \ --topic test \ --partitions 2 \ --replication-factor 3 \ --config min.insync.replicas=2 \ && echo Das Topic \'test\' wurde erfolgreich angelegt: \ - && kafka-topics --bootstrap-server kafka:9092 --describe --topic test - kafka-topics --bootstrap-server kafka:9092 \ + && kafka-topics --bootstrap-server kafka:9091 --describe --topic test + kafka-topics --bootstrap-server kafka:9091 \ --delete \ --if-exists \ --topic __CruiseControlMetrics - kafka-topics --bootstrap-server kafka:9092 \ + kafka-topics --bootstrap-server kafka:9091 \ --create \ --topic __CruiseControlMetrics \ --partitions 2 \ --replication-factor 3 \ --config min.insync.replicas=2 \ && echo Das Topic \'__CruiseControlMetrics\' wurde erfolgreich angelegt: \ - && kafka-topics --bootstrap-server kafka:9092 --describe --topic __CruiseControlMetrics + && kafka-topics --bootstrap-server kafka:9091 --describe --topic __CruiseControlMetrics fi \ && date > INITIALIZED stop_grace_period: 0s @@ -260,7 +315,7 @@ services: connections: docker-kafka-server: properties: - bootstrap.servers: "kafka:9092" + bootstrap.servers: "kafka:9091" schema-registry: url: "http://schema-registry:8085" connect: