Skip to content

[SPARK-34032][SS]Add truststore and keystore type config possibility for Kafka delegation token #31070

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
gaborgsomogyi wants to merge 1 commit into from
Closed

[SPARK-34032][SS]Add truststore and keystore type config possibility for Kafka delegation token #31070

gaborgsomogyi wants to merge 1 commit into from

Conversation

@gaborgsomogyi
Copy link
Contributor

@gaborgsomogyi gaborgsomogyi commented Jan 6, 2021

What changes were proposed in this pull request?

Kafka delegation token is obtained with AdminClient where security settings can be set. Keystore and trustrore type however can't be set. In this PR I've added these new configurations. This can be useful when the type is different. A good example is to make Spark FIPS compliant where the default JKS is not accepted.

Why are the changes needed?

Missing configurations.

Does this PR introduce any user-facing change?

Yes, adding 2 additional config parameters.

How was this patch tested?

Existing + modified unit tests + simple Kafka to Kafka app on cluster.

@SparkQA
Copy link

SparkQA commented Jan 6, 2021

Test build #133753 has finished for PR 31070 at commit 9f2cacb.

  • This patch passes all tests.
  • This patch merges cleanly.
  • This patch adds no public classes.

@SparkQA
Copy link

SparkQA commented Jan 6, 2021

Kubernetes integration test starting
URL: https://amplab.cs.berkeley.edu/jenkins/job/SparkPullRequestBuilder-K8s/38341/

@SparkQA
Copy link

SparkQA commented Jan 6, 2021

Kubernetes integration test status failure
URL: https://amplab.cs.berkeley.edu/jenkins/job/SparkPullRequestBuilder-K8s/38341/

@viirya
Copy link
Member

viirya commented Jan 6, 2021

cc @HeartSaVioR

@github-actions github-actions bot added the DOCS label Jan 6, 2021
HeartSaVioR
HeartSaVioR approved these changes Jan 8, 2021
View reviewed changes
Copy link
Contributor

@HeartSaVioR HeartSaVioR left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

+1

@HeartSaVioR
Copy link
Contributor

HeartSaVioR commented Jan 8, 2021
edited
Loading

Triggering Jenkins / Github Action. I'll merge once test passes.

@HeartSaVioR
Copy link
Contributor

HeartSaVioR commented Jan 8, 2021

retest this, please

@SparkQA
Copy link

SparkQA commented Jan 8, 2021

Test build #133829 has finished for PR 31070 at commit 9f2cacb.

  • This patch passes all tests.
  • This patch merges cleanly.
  • This patch adds no public classes.

@HeartSaVioR
Copy link
Contributor

HeartSaVioR commented Jan 8, 2021

OK test passed. Merging to master.

@HeartSaVioR
Copy link
Contributor

HeartSaVioR commented Jan 8, 2021

Thanks @gaborgsomogyi for the contribution! I merged this to master.

@gaborgsomogyi
Copy link
Contributor Author

gaborgsomogyi commented Jan 8, 2021

Thanks you guys taking care!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@viirya viirya viirya approved these changes

@HeartSaVioR HeartSaVioR HeartSaVioR approved these changes

Assignees

No one assigned

Labels

DOCS

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@gaborgsomogyi @SparkQA @viirya @HeartSaVioR