[
https://issues.apache.org/jira/browse/KAFKA-6426?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16312885#comment-16312885
]
Menaka Madushanka commented on KAFKA-6426:
------------------------------------------
Hi Manikumar,
Thank you very much for the information.
I applied the above configurations but still, I can consume with faulty
username and password.
And do you have any fix for,
kafka.utils.VerifiableProperties - Property sasl.mechanism is not valid ?
Thanks and Regards,
Menaka
> Kafka SASL/SCRAM authentication does not fail for incorrect username or
> password.
> ---------------------------------------------------------------------------------
>
> Key: KAFKA-6426
> URL: https://issues.apache.org/jira/browse/KAFKA-6426
> Project: Kafka
> Issue Type: Bug
> Affects Versions: 0.10.2.1
> Environment: Ubuntu 16.04, JDK 1.8, Kafka_2.10-0.10.2.1
> Reporter: Menaka Madushanka
> Attachments: broker-jaas.conf, client-jaas.conf, consumer.properties,
> producer.properties, server.properties
>
>
> Hi,
> I configured Kafka 0.10.2.1 for SASL/SCRAM by following the documentation
> [1].
> But it does work when I use incorrect username or password in the client as
> well.
> I have attached the server.properties, consumer.properties,
> producer.properties, jass config files for broker and client.
> Also, in my producer, I have set
> {{props.put("sasl.mechanism", "SCRAM-SHA-256");}}
> but when running, it shows,
> {{kafka.utils.VerifiableProperties - Property sasl.mechanism is not valid}}
> [1]
> [https://kafka.apache.org/documentation/#security_sasl_scram|https://kafka.apache.org/documentation/#security_sasl_scram]
> Thanks and Regards,
> Menaka
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
