[jira] [Updated] (SAMZA-2780) Enable zookeeper TLS options from Config

Katie Liu (Jira) Tue, 09 May 2023 14:05:11 -0700


     [ 
https://issues.apache.org/jira/browse/SAMZA-2780?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Katie Liu updated SAMZA-2780:
-----------------------------
    Description: 
We need someway to enable TLS with zookeeper clients.

There are 8 required environment properties to be set, either through jvm args 
or {{System.setProperty}}

 
{{{}System.setProperty({}}}{{{}"zookeeper.client.secure"{}}}{{{}, 
{}}}{{{}"true"{}}}{{{});{}}}
{{{}System.setProperty({}}}{{{}"zookeeper.clientCnxnSocket"{}}}{{{}, 
{}}}{{{}"org.apache.zookeeper.ClientCnxnSocketNetty"{}}}{{{});{}}}
{{{}System.setProperty({}}}{{{}"zookeeper.ssl.keyStore.location"{}}}{{{}, 
{}}}{{{}""{}}}{{{});{}}}
{{{}System.setProperty({}}}{{{}"zookeeper.ssl.keyStore.password"{}}}{{{}, 
{}}}{{{}""{}}}{{{});{}}}
{{{}System.setProperty({}}}{{{}"zookeeper.ssl.keyStore.type"{}}}{{{}, 
{}}}{{{}"PKCS12"{}}}{{{});{}}}
{{{}System.setProperty({}}}{{{}"zookeeper.ssl.trustStore.location"{}}}{{{}, 
{}}}{{{}""{}}}{{{});{}}}
{{{}System.setProperty({}}}{{{}"zookeeper.ssl.trustStore.password"{}}}{{{}, 
{}}}{{{}""{}}}{{{});{}}}
{{{}System.setProperty({}}}{{{}"zookeeper.ssl.trustStore.type"{}}}{{{}, 
{}}}{{{}"JKS"{}}}{{{});{}}}

 

This option needs to be on both the AM and containers.

  was:
We need someway to enable TLS with zookeeper clients.

There are 8 required environment properties to be set, either through jvm args 
or {{System.setProperty}}

 
{{{}System.setProperty({}}}{{{}"zookeeper.client.secure"{}}}{{{}, 
{}}}{{{}"true"{}}}{{{});{}}}
{{{}System.setProperty({}}}{{{}"zookeeper.clientCnxnSocket"{}}}{{{}, 
{}}}{{{}"org.apache.zookeeper.ClientCnxnSocketNetty"{}}}{{{});{}}}
{{{}System.setProperty({}}}{{{}"zookeeper.ssl.keyStore.location"{}}}{{{}, 
{}}}{{{}""{}}}{{{});{}}}
{{{}System.setProperty({}}}{{{}"zookeeper.ssl.keyStore.password"{}}}{{{}, 
{}}}{{{}""{}}}{{{});{}}}
{{{}System.setProperty({}}}{{{}"zookeeper.ssl.keyStore.type"{}}}{{{}, 
{}}}{{{}"PKCS12"{}}}{{{});{}}}
{{{}System.setProperty({}}}{{{}"zookeeper.ssl.trustStore.location"{}}}{{{}, 
{}}}{{{}""{}}}{{{});{}}}
{{{}System.setProperty({}}}{{{}"zookeeper.ssl.trustStore.password"{}}}{{{}, 
{}}}{{{}""{}}}{{{});{}}}
{{{}System.setProperty({}}}{{{}"zookeeper.ssl.trustStore.type"{}}}{{{}, 
{}}}{{{}"JKS"{}}}{{{});{}}}


> Enable zookeeper TLS options from Config
> ----------------------------------------
>
>                 Key: SAMZA-2780
>                 URL: https://issues.apache.org/jira/browse/SAMZA-2780
>             Project: Samza
>          Issue Type: Bug
>            Reporter: Katie Liu
>            Priority: Major
>
> We need someway to enable TLS with zookeeper clients.
> There are 8 required environment properties to be set, either through jvm 
> args or {{System.setProperty}}
>  
> {{{}System.setProperty({}}}{{{}"zookeeper.client.secure"{}}}{{{}, 
> {}}}{{{}"true"{}}}{{{});{}}}
> {{{}System.setProperty({}}}{{{}"zookeeper.clientCnxnSocket"{}}}{{{}, 
> {}}}{{{}"org.apache.zookeeper.ClientCnxnSocketNetty"{}}}{{{});{}}}
> {{{}System.setProperty({}}}{{{}"zookeeper.ssl.keyStore.location"{}}}{{{}, 
> {}}}{{{}""{}}}{{{});{}}}
> {{{}System.setProperty({}}}{{{}"zookeeper.ssl.keyStore.password"{}}}{{{}, 
> {}}}{{{}""{}}}{{{});{}}}
> {{{}System.setProperty({}}}{{{}"zookeeper.ssl.keyStore.type"{}}}{{{}, 
> {}}}{{{}"PKCS12"{}}}{{{});{}}}
> {{{}System.setProperty({}}}{{{}"zookeeper.ssl.trustStore.location"{}}}{{{}, 
> {}}}{{{}""{}}}{{{});{}}}
> {{{}System.setProperty({}}}{{{}"zookeeper.ssl.trustStore.password"{}}}{{{}, 
> {}}}{{{}""{}}}{{{});{}}}
> {{{}System.setProperty({}}}{{{}"zookeeper.ssl.trustStore.type"{}}}{{{}, 
> {}}}{{{}"JKS"{}}}{{{});{}}}
>  
> This option needs to be on both the AM and containers.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Updated] (SAMZA-2780) Enable zookeeper TLS options from Config

Reply via email to