Add support for Kafka SASL/PLAIN authentication via SCRAM-SHA-256 or SCRAM-SHA-512 mechanism

[WalkerWang731]

Which problem is this PR solving?

• Resolves Not support Kafka SASL/PLAIN authentication of SCRAM-SHA-256 or SCRAM-SHA-512 mechanism #2722
• Resolves Kafka connection using SCRAM authentication #2046
• Closes WIP - Adding scram authentication for kafka #2110 (replaces it)

Short description of the changes

• The smallest modification on the current version.
• Different from the previous PR WIP - Adding scram authentication for kafka #2110, I just modified pkg/kafka/auth/plaintext.go , pkg/kafka/auth/options.go and pkg/kafka/auth/config.go, and not add any new file.
• More clearly for option name, using option name is mechanism (reference from Kafka parameter name rules )
• About the Prefix, I think to keep using plaintext better than scarm, because these are both belong to SASL, in the future, it can change to sasl if needed. Actually, using plaintext is ok, it will not be confusing, because it name is SASL_PLAINTEXT that from Kafka official security protocol parameter name
• About the parameters limit of mechanism, I followed Kafka name rules (SCRAM-SHA-256, SCRAM-SHA-512, PLAIN)
• I reserved the current version plaintext mechanism, and add to default. If users do not specify the mechanism, it not affect continued use. if users use the mechanism then just only add --kafka.ROLE.plaintext.mechanism parameter then can use it.

Changelog

Add that support Kafka SASL/PLAIN authentication of SCRAM-SHA-256 or SCRAM-SHA-512 mechanism

Parameter config of collector (SPAN_STORAGE_TYPE=kafka)

--kafka.producer.plaintext.mechanism string      The plaintext Mechanism for SASL/PLAIN authentication, e.g. 'SCRAM-SHA-256' or 'SCRAM-SHA-512' or 'PLAIN' (default "PLAIN")

Parameter config of ingester

--kafka.consumer.plaintext.mechanism string      The plaintext Mechanism for SASL/PLAIN authentication, e.g. 'SCRAM-SHA-256' or 'SCRAM-SHA-512' or 'PLAIN' (default "PLAIN")

[codecov]

Codecov Report

Merging #2724 (5d19011) into master (2ffdaae) will increase coverage by 0.03%.
The diff coverage is n/a.

@@            Coverage Diff             @@
##           master    #2724      +/-   ##
==========================================
+ Coverage   95.73%   95.76%   +0.03%     
==========================================
  Files         217      217              
  Lines        9619     9619              
==========================================
+ Hits         9209     9212       +3     
+ Misses        337      336       -1     
+ Partials       73       71       -2     

Impacted Files	Coverage Δ
cmd/collector/app/server/zipkin.go	73.07% <0.00%> (-3.85%)	⬇️
cmd/query/app/static_handler.go	98.26% <0.00%> (+3.47%)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 2ffdaae...5d19011. Read the comment docs.

[jpkrohling]

Suggested change

	UserName string `mapstructure:"username"`
	Username string `mapstructure:"username"`

[WalkerWang731]

ok, I will update later.

[jpkrohling]

LGTM

[Neustradamus]

@WalkerWang731 and all others: Thanks a lot for all about SCRAM.

Linked to:

• State of Play scram-sasl/info#1