Details
-
Improvement
-
Status: Resolved
-
Major
-
Resolution: Won't Fix
-
0.10.0.0
-
None
-
None
Description
Using SASL PLAIN in production may require a different username/password checking than what is currently in the codebase, based on data contained in the server jaas.conf.
To do so, a deployment needs to extend the SaslPlainServer as described here
http://kafka.apache.org/0100/documentation.html#security_sasl_plain_production
However the evaluate(byes) method still needs to impleemnt RFC4616, so it is useful to separate the password checking from the reading of the data from the wire.
A simple extract method into an overridable methos should suffice
Attachments
Issue Links
- links to