[
https://issues.apache.org/jira/browse/KAFKA-4701?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16459776#comment-16459776
]
Allen Xiang commented on KAFKA-4701:
------------------------------------
KAFKA-6810 kind of works. But here is the catch. It requires you to have a new
password/trust store path to do a reload. What if we added some new certs to
the same trust store, and did not change password? A restart is still needed to
do the reload?
> Allow kafka brokers to dynamically reload truststore without restarting.
> ------------------------------------------------------------------------
>
> Key: KAFKA-4701
> URL: https://issues.apache.org/jira/browse/KAFKA-4701
> Project: Kafka
> Issue Type: Improvement
> Components: security
> Reporter: Allen Xiang
> Priority: Major
> Labels: security
> Fix For: 2.0.0
>
>
> Right now in order to add SSL clients(update broker truststores), a rolling
> restart of all brokers is required. This is very time consuming and
> unnecessary. A dynamic truststore manager is needed to reload truststore from
> file system without restarting brokers.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
