Important
You are viewing documentation for an older version of Confluent Platform. For the latest, click here.
REST Proxy Security¶
REST Proxy supports security features, including:
- SSL for securing communication between REST clients and the REST Proxy (HTTPS)
- SSL encryption between the REST Proxy and a secure Kafka cluster
- SSL authentication between the REST Proxy and a secure Kafka Cluster
- SASL authentication between the REST Proxy and a secure Kafka Cluster
For more configuration details, check the configuration options.
By default, all the requests to the broker use the same Kerberos Principal or the SSL certificate
to communicate with the broker when the client.security.protocol is configured to be either
of SSL, SASL_PLAIN, or SASL_SSL. With this behavior, it’s not possible to set fine-grained ACL’s for
individual topics. This behavior can be modified by using the Confluent Security Plugins. Refer to
REST Proxy Security Plugins for more
details.