We use cookies to ensure you get the best experience on our website
Home Explore Help
Register Sign In
0ct0pu5
/
kafka-ui
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Added AWS IAM (#692)

German Osin 4 years ago
parent
febc495ea7
commit
32a0ece0a3
3 changed files with 48 additions and 0 deletions
Unified View Show Diff Stats
  1. 1 0
      README.md
  2. 41 0
      guides/AWS_IAM.md
  3. 6 0
      kafka-ui-api/pom.xml

+ 1 - 0
README.md
View File 

@@ -109,6 +109,7 @@ To read more please follow to [chart documentation](charts/kafka-ui/README.md)
 
 # Guides
 
 # Guides
 
 
 
 - [SSO configuration](guides/SSO.md)
 
 - [SSO configuration](guides/SSO.md)
 
+- [AWS IAM configuration](guides/AWS_IAM.md)
 
 
 
 ## Connecting to a Secure Broker
 
 ## Connecting to a Secure Broker

+ 41 - 0
guides/AWS_IAM.md
View File 

@@ -0,0 +1,41 @@
 
+# How to configure AWS IAM Authentication
 
+
 
+UI for Apache Kafka comes with built-in [aws-msk-iam-auth](https://github.com/aws/aws-msk-iam-auth) library.
 
+
 
+You could pass sasl configs in properties section for each cluster.
 
+
 
+More details could be found here: [aws-msk-iam-auth](https://github.com/aws/aws-msk-iam-auth)
 
+ 
+## Examples: 
+
 
+Please replace 
+* <KAFKA_URL> with broker list
 
+* <PROFILE_NAME> with your aws profile
 
+
 
+
 
+### Running From Docker Image
 
+
 
+```sh
 
+docker run -p 8080:8080 \
 
+    -e KAFKA_CLUSTERS_0_NAME=local \
 
+    -e KAFKA_CLUSTERS_0_BOOTSTRAPSERVERS=<KAFKA_URL> \
 
+    -e KAFKA_CLUSTERS_0_PROPERTIES_SECURITY_PROTOCOL=SASL_SSL \
 
+    -e KAFKA_CLUSTERS_0_PROPERTIES_SASL_MECHANISM=AWS_MSK_IAM \
 
+    -e KAFKA_CLUSTERS_0_PROPERTIES_SASL_CLIENT_CALLBACK_HANDLER_CLASS=software.amazon.msk.auth.iam.IAMClientCallbackHandler \
 
+    -e KAFKA_CLUSTERS_0_PROPERTIES_SASL_JAAS_CONFIG=software.amazon.msk.auth.iam.IAMLoginModule required awsProfileName="<PROFILE_NAME>"; \
 
+    -d provectuslabs/kafka-ui:latest 
+```
 
+
 
+### Configuring by application.yaml
 
+
 
+```yaml
 
+kafka:
 
+  clusters:
 
+    - name: local
 
+      bootstrapServers: <KAFKA_URL>
 
+      properties:
 
+        security.protocol: SASL_SSL
 
+        sasl.mechanism: AWS_MSK_IAM
 
+        sasl.client.callback.handler.class: software.amazon.msk.auth.iam.IAMClientCallbackHandler
 
+        sasl.jaas.config: software.amazon.msk.auth.iam.IAMLoginModule required awsProfileName="<PROFILE_NAME>";
 
+```

+ 6 - 0
kafka-ui-api/pom.xml
View File 

@@ -97,6 +97,12 @@
 
             <version>${confluent.version}</version>
 
             <version>${confluent.version}</version>
 
         </dependency>
 
         </dependency>
 
 
 
+        <dependency>
 
+            <groupId>software.amazon.msk</groupId>
 
+            <artifactId>aws-msk-iam-auth</artifactId>
 
+            <version>1.1.0</version>
 
+        </dependency>
 
+
 
         <dependency>
 
         <dependency>
 
             <groupId>org.apache.avro</groupId>
 
             <groupId>org.apache.avro</groupId>
 
             <artifactId>avro</artifactId>
 
             <artifactId>avro</artifactId>

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5