|
|
@@ -8,26 +8,15 @@ services:
|
|
|
ports:
|
|
|
- 8080:8080
|
|
|
depends_on:
|
|
|
- - zookeeper
|
|
|
- kafka
|
|
|
environment:
|
|
|
KAFKA_CLUSTERS_0_NAME: local
|
|
|
KAFKA_CLUSTERS_0_BOOTSTRAPSERVERS: kafka:29092
|
|
|
KAFKA_CLUSTERS_0_PROPERTIES_SECURITY_PROTOCOL: SASL_PLAINTEXT
|
|
|
KAFKA_CLUSTERS_0_PROPERTIES_SASL_MECHANISM: PLAIN
|
|
|
-# KAFKA_CLUSTERS_0_PROPERTIES_SASL_JAAS_CONFIG: 'org.apache.kafka.common.security.plain.PlainLoginModule required username="enzo" password="cisternino";'
|
|
|
KAFKA_CLUSTERS_0_PROPERTIES_SASL_JAAS_CONFIG: 'org.apache.kafka.common.security.plain.PlainLoginModule required username="admin" password="admin-secret";'
|
|
|
DYNAMIC_CONFIG_ENABLED: true # not necessary for sasl auth, added for tests
|
|
|
|
|
|
- zookeeper:
|
|
|
- image: wurstmeister/zookeeper:3.4.6
|
|
|
- environment:
|
|
|
- JVMFLAGS: "-Djava.security.auth.login.config=/etc/zookeeper/zookeeper_jaas.conf"
|
|
|
- volumes:
|
|
|
- - ./jaas/zookeeper_jaas.conf:/etc/zookeeper/zookeeper_jaas.conf
|
|
|
- ports:
|
|
|
- - 2181:2181
|
|
|
-
|
|
|
kafka:
|
|
|
image: confluentinc/cp-kafka:7.2.1
|
|
|
hostname: kafka
|
|
|
@@ -37,25 +26,27 @@ services:
|
|
|
- "9997:9997"
|
|
|
environment:
|
|
|
KAFKA_BROKER_ID: 1
|
|
|
- KAFKA_ZOOKEEPER_CONNECT: 'zookeeper:2181'
|
|
|
KAFKA_LISTENER_SECURITY_PROTOCOL_MAP: 'CONTROLLER:PLAINTEXT,SASL_PLAINTEXT:SASL_PLAINTEXT,PLAINTEXT_HOST:PLAINTEXT'
|
|
|
KAFKA_ADVERTISED_LISTENERS: 'SASL_PLAINTEXT://kafka:29092,PLAINTEXT_HOST://localhost:9092'
|
|
|
KAFKA_OPTS: "-Djava.security.auth.login.config=/etc/kafka/jaas/kafka_server.conf"
|
|
|
- KAFKA_AUTHORIZER_CLASS_NAME: "kafka.security.authorizer.AclAuthorizer"
|
|
|
KAFKA_OFFSETS_TOPIC_REPLICATION_FACTOR: 1
|
|
|
KAFKA_GROUP_INITIAL_REBALANCE_DELAY_MS: 0
|
|
|
KAFKA_TRANSACTION_STATE_LOG_MIN_ISR: 1
|
|
|
KAFKA_TRANSACTION_STATE_LOG_REPLICATION_FACTOR: 1
|
|
|
KAFKA_JMX_PORT: 9997
|
|
|
KAFKA_JMX_HOSTNAME: localhost
|
|
|
+ KAFKA_PROCESS_ROLES: 'broker,controller'
|
|
|
KAFKA_NODE_ID: 1
|
|
|
KAFKA_CONTROLLER_QUORUM_VOTERS: '1@kafka:29093'
|
|
|
KAFKA_LISTENERS: 'SASL_PLAINTEXT://kafka:29092,CONTROLLER://kafka:29093,PLAINTEXT_HOST://0.0.0.0:9092'
|
|
|
KAFKA_INTER_BROKER_LISTENER_NAME: 'SASL_PLAINTEXT'
|
|
|
KAFKA_SASL_ENABLED_MECHANISMS: 'PLAIN'
|
|
|
KAFKA_SASL_MECHANISM_INTER_BROKER_PROTOCOL: 'PLAIN'
|
|
|
+ KAFKA_CONTROLLER_LISTENER_NAMES: 'CONTROLLER'
|
|
|
+ KAFKA_LOG_DIRS: '/tmp/kraft-combined-logs'
|
|
|
KAFKA_SECURITY_PROTOCOL: 'SASL_PLAINTEXT'
|
|
|
- KAFKA_SUPER_USERS: 'User:admin'
|
|
|
+ KAFKA_SUPER_USERS: 'User:admin,User:enzo'
|
|
|
volumes:
|
|
|
- ./scripts/update_run.sh:/tmp/update_run.sh
|
|
|
- ./jaas:/etc/kafka/jaas
|
|
|
+ command: "bash -c 'if [ ! -f /tmp/update_run.sh ]; then echo \"ERROR: Did you forget the update_run.sh file that came with this docker-compose.yml file?\" && exit 1 ; else /tmp/update_run.sh && /etc/confluent/docker/run ; fi'"
|
iliax