We use cookies to ensure you get the best experience on our website
Home Explore Help
Register Sign In
0ct0pu5
/
kafka-ui
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Simplify kafka verification

Roman Zabaluev 1 year ago
parent
2030489183
commit
86ee3fc898
2 changed files with 1 additions and 70 deletions
Split View Show Diff Stats
  1. 0 67
      kafka-ui-api/src/main/java/com/provectus/kafka/ui/util/InsecureSslEngineFactory.java
  2. 1 3
      kafka-ui-api/src/main/java/com/provectus/kafka/ui/util/KafkaClientSslPropertiesUtil.java

+ 0 - 67
kafka-ui-api/src/main/java/com/provectus/kafka/ui/util/InsecureSslEngineFactory.java
View File 

@@ -1,67 +0,0 @@
 
-package com.provectus.kafka.ui.util;
 
-
 
-import io.netty.handler.ssl.util.InsecureTrustManagerFactory;
 
-import java.security.KeyManagementException;
 
-import java.security.KeyStore;
 
-import java.security.NoSuchAlgorithmException;
 
-import java.security.SecureRandom;
 
-import java.util.Map;
 
-import java.util.Set;
 
-import javax.net.ssl.SSLContext;
 
-import javax.net.ssl.SSLEngine;
 
-import org.apache.kafka.common.security.auth.SslEngineFactory;
 
-
 
-public class InsecureSslEngineFactory implements SslEngineFactory {
 
-
 
-  private SSLContext sslContext;
 
-
 
-  @Override
 
-  public SSLEngine createClientSslEngine(String peerHost, int peerPort, String endpointIdentification) {
 
-    var trustManagers = InsecureTrustManagerFactory.INSTANCE.getTrustManagers();
 
-    try {
 
-      this.sslContext = SSLContext.getInstance("SSL");
 
-      sslContext.init(null, trustManagers, new SecureRandom());
 
-      SSLEngine sslEngine = sslContext.createSSLEngine(peerHost, peerPort);
 
-      sslEngine.setUseClientMode(true);
 
-      return sslEngine;
 
-    } catch (NoSuchAlgorithmException | KeyManagementException e) {
 
-      throw new RuntimeException(e);
 
-    }
 
-  }
 
-
 
-  @Override
 
-  public SSLEngine createServerSslEngine(String peerHost, int peerPort) {
 
-    return null;
 
-  }
 
-
 
-  @Override
 
-  public boolean shouldBeRebuilt(Map<String, Object> nextConfigs) {
 
-    return false;
 
-  }
 
-
 
-  @Override
 
-  public Set<String> reconfigurableConfigs() {
 
-    return null;
 
-  }
 
-
 
-  @Override
 
-  public KeyStore keystore() {
 
-    return null;
 
-  }
 
-
 
-  @Override
 
-  public KeyStore truststore() {
 
-    return null;
 
-  }
 
-
 
-  @Override
 
-  public void close() {
 
-    this.sslContext = null;
 
-  }
 
-
 
-  @Override
 
-  public void configure(Map<String, ?> configs) {
 
-
 
-  }
 
-}
 
-

+ 1 - 3
kafka-ui-api/src/main/java/com/provectus/kafka/ui/util/KafkaClientSslPropertiesUtil.java
View File 

@@ -1,7 +1,5 @@
 
 package com.provectus.kafka.ui.util;
 
 
-import static org.apache.kafka.common.config.SslConfigs.SSL_ENGINE_FACTORY_CLASS_CONFIG;
 
-
 
 import com.provectus.kafka.ui.config.ClustersProperties;
 
 import java.util.Properties;
 
 import javax.annotation.Nullable;
 
@@ -19,7 +17,7 @@ public final class KafkaClientSslPropertiesUtil {
 
     }
 
 
     if (!truststoreConfig.isVerifySsl()) {
 
-      sink.put(SSL_ENGINE_FACTORY_CLASS_CONFIG, InsecureSslEngineFactory.class);
 
+      sink.put(SslConfigs.SSL_ENDPOINT_IDENTIFICATION_ALGORITHM_CONFIG, "");
 
       return;
 
     }

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5