REST Proxy SecurityΒΆ

REST Proxy supports security features, including:

  • SSL for securing communication between REST clients and the REST Proxy (HTTPS)
  • SSL encryption between the REST Proxy and a secure Kafka cluster
  • SSL authentication between the REST Proxy and a secure Kafka Cluster
  • SASL authentication between the REST Proxy and a secure Kafka Cluster

For more configuration details, check the configuration options.

By default, all the requests to the broker use the same Kerberos Principal or the SSL certificate to communicate with the broker when the client.security.protocol is configured to be either of SSL, SASL_PLAIN, or SASL_SSL. With this behavior, it’s not possible to set fine-grained ACL’s for individual topics. This behavior can be modified by using the Confluent Security Plugins. Refer to |crest| Security Plugins for more details.