Vipin Rathor created STORM-3123:
-----------------------------------
Summary: Storm Kafka Monitor does not work with Kafka over two-way
SSL
Key: STORM-3123
URL: https://issues.apache.org/jira/browse/STORM-3123
Project: Apache Storm
Issue Type: Bug
Components: storm-kafka-monitor
Affects Versions: 1.2.2
Reporter: Vipin Rathor
Storm Kafka Monitor has no option to read / parse SSL truststore/keystore
properties which are required to connect to Kafka running over two-way SSL. As
a fix, it needs to understand the following additional Kafka properties:
{code:java}
ssl.truststore.location=<truststore-file>
ssl.truststore.password=<password>
ssl.keystore.location=<keystore-file>
ssl.keystore.password=<password>
ssl.key.password=<password>
{code}
Since, JVM has a fallback mechanism for loading truststore, Storm Kafka Monitor
would always endup using some truststore and would eventually work with one-way
SSL (which is also a default for Kafka setup).
Therefore, in the absence of this fix, the only available workaround is to
stick to one-way SSL in Kafka (i.e. keep ssl.client.auth=none in Kafka).
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
