[
https://issues.apache.org/jira/browse/KAFKA-15452?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17765044#comment-17765044
]
Mickael Maison commented on KAFKA-15452:
----------------------------------------
Hi [[email protected]], I granted you contributor permissions so you should
now be able to assign ticket to yourself.
The limitation you mention seems like it would require a KIP. Take a look at
https://cwiki.apache.org/confluence/display/KAFKA/Kafka+Improvement+Proposals
> Custom KafkaPrincipalBuilder Cannot Access SslPrincipalMapper
> -------------------------------------------------------------
>
> Key: KAFKA-15452
> URL: https://issues.apache.org/jira/browse/KAFKA-15452
> Project: Kafka
> Issue Type: Bug
> Affects Versions: 2.8.1
> Reporter: Raghu Baddam
> Priority: Minor
> Labels: kafka, walmart
>
> When implementing a custom KafkaPrincipalBuilder, it is not possible to
> access *SslPrincipalMapper* and {*}kerberosShortNamer{*}. This limits the
> ability to parse Regex Rules from
> BrokerSecurityConfigs.SSL_PRINCIPAL_MAPPING_RULES_CONFIG, resulting in lack
> of support for Mapping Rules as SslPrincipalMapper is null.
> A possible workaround is to read the configuration and build another
> SslPrincipalMapper. However, it would be beneficial if this issue could be
> addressed at the ChannelBuilders or SslChannelBuilder level.
> Git Reference:
> [https://github.com/apache/kafka/blob/trunk/clients/src/main/java/org/apache/kafka/common/network/ChannelBuilders.java#L223-L242]
> If the community deems this to be a bug, I am willing to provide a fix.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
