Skip to content
/ kafka-local-docker Public

Local docker compose instance using cert based authentication

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

beta-core/kafka-local-docker

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
cert
cert
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
dev.sh
dev.sh
 
 
docker-compose.yml
docker-compose.yml
 
 

Repository files navigation

Setup

Pre-requites

Steps

  • Download repo, extract if necessary
  • open terminal
  • in the terminal change directory cd to folder with code in it.
  • in the terminal cd into the cert folder
  • in the terminal you will source the ssl script source ssl.sh. this will allow you to call functions in the shell script.
  • in the terminal main which will execute the main function in ssl.sh
    • main function script: 
      function main {
    make_folders
    check_key_file
    set_variables
}
  • Create ca root authority if and only if one is not present run create_ca function entering information as needed.
  • Creating a client cert with sign_cert <name> which will sign a cert to the CA created. note <name> should follow openssl naming conventions.

Java

The crt and key files must exists before running the trust_store and key_store <name> commands

Java users can make a trust-store, a jks file with only crts in them by running the command trust_store. If you need a key_store for the client certs you can run key_store <name> where the <name> matches the one used in sign_cert <name>.

After Adding to store

After certs are added to the key and trust store you may have to restart the zookeeper and broker instances. In production instances you can do a rolling release so only one instance out of n are down a at a time.

Overview

OpenSSL

OpenSSL is a library for applications to secure network communications via SSL and TLS protocols - wiki

OpenSSL is used to create the following:

graph TD
    subgraph CA Root Authority
        dev_ca[Development CA Root]
    end

    subgraph Client Cert
        kafka1[Kafka Broker 1: Kafka1]
    end

    dev_ca --- kafka1
Loading

Kafka

graph TD
    subgraph Client
        python[Python Client]
    end
    subgraph Kafka
        broker[Broker  Cluster]
        zookeeper[Zookeeper Cluster ]
    end
    broker --- zookeeper
    python --- broker
Loading

Brokers

Brokers implement the Kafka protocol

graph TD
    subgraph Broker Cluster
        broker1[Broker 1]
        broker2[Broker 2]
        broker3[Broker 3]
    end
Loading

Apache ZooKeeper

Distributed Service key value store. Key services:

- Wiki

Note: Kafka Uses Zookeeper to store topic information such as current group.id offset position.

graph TD
    subgraph Zookeeper Cluster
        zookeeper_1[Zookeeper 1]
        zookeeper_2[Zookeeper 2]
        zookeeper_3[Zookeeper 3]
        zookeeper_4[Zookeeper 4]
    end
Loading

About

Local docker compose instance using cert based authentication

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages