Return-Path: X-Original-To: apmail-camel-dev-archive@www.apache.org Delivered-To: apmail-camel-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 33C2D1952A for ; Wed, 16 Mar 2016 16:04:05 +0000 (UTC) Received: (qmail 49671 invoked by uid 500); 16 Mar 2016 16:04:04 -0000 Delivered-To: apmail-camel-dev-archive@camel.apache.org Received: (qmail 49623 invoked by uid 500); 16 Mar 2016 16:04:04 -0000 Mailing-List: contact dev-help@camel.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@camel.apache.org Delivered-To: mailing list dev@camel.apache.org Received: (qmail 49611 invoked by uid 99); 16 Mar 2016 16:04:04 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd3-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 16 Mar 2016 16:04:04 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd3-us-west.apache.org (ASF Mail Server at spamd3-us-west.apache.org) with ESMTP id DA667180184 for ; Wed, 16 Mar 2016 16:04:03 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd3-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: -0.802 X-Spam-Level: X-Spam-Status: No, score=-0.802 tagged_above=-999 required=6.31 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=disabled Authentication-Results: spamd3-us-west.apache.org (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mx2-lw-eu.apache.org ([10.40.0.8]) by localhost (spamd3-us-west.apache.org [10.40.0.10]) (amavisd-new, port 10024) with ESMTP id uGcPYrdm82oI for ; Wed, 16 Mar 2016 16:04:01 +0000 (UTC) Received: from mail-ig0-f171.google.com (mail-ig0-f171.google.com [209.85.213.171]) by mx2-lw-eu.apache.org (ASF Mail Server at mx2-lw-eu.apache.org) with ESMTPS id EB0F35FAE5 for ; Wed, 16 Mar 2016 16:04:00 +0000 (UTC) Received: by mail-ig0-f171.google.com with SMTP id ig19so120061497igb.0 for ; Wed, 16 Mar 2016 09:04:00 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=OKoYKA1kW8oTg7B4/7b2iqScErXXzRoNUQ5nnS7HsS8=; b=yX10rGvqO1adsUVk4OqVOjjkZFRr4Gbqm2MY/dUK7t/j4we98CiWqDRzqXEQNqFVCt NHtzVfttTxFu9VfF/a2xeXr7iJkWrmlZKtLfHCL7f6uWGRmj0XvzzSVT8aaHQ31ek8MV PeEXnJ8/Pd4yP+/nedH8DjNHAdnmXK6NtiealinqWR8z8DwFP4LRcs0kw4gxJcqqRyp5 mk/TPutBiPn1JLG9bu0Efqyp+ss6rb6Ow5rkkRevhkhz3IPLIoTX6TzwLWT+bCNh7SHE hKRfmvPZU9EeGNUZfJfY1bZmYW79a0zFLh79XodeTcQax5z8OZN/X6nXKEZ7iGUm5cOc VYbg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to; bh=OKoYKA1kW8oTg7B4/7b2iqScErXXzRoNUQ5nnS7HsS8=; b=bS+LOe2k2P/KF09urszUX7m4oshXj7sVXuSC8VjNWkvzUuEgYcSRjZHDHRHGn1fcvb vv1debad0GhCPXoVWPXUiXbd2UvEl8tGnGCrffSPGJSYu/yYQ06+Ud5s/m7YvWs+o73e g+nxyCVJM5FF+FgkgK7qTYSkmEitrmquQVX2wg42OmjWIibQrlNtXKfopWlhTqpxgT16 1HSuinGktzlBG2pLkS/VURKf1il0BMyELv6Ds04YF/lcEDoOnRpraqL+JfGdK64VhLEL gUgnPIQUi5OoyLGYZkTzIokj6lvH1MCFqd8/hgReOOqCEu65faj/Xv8LaQKT0FmScyDe cleg== X-Gm-Message-State: AD7BkJKQXcte/MoSoDjzmSPIYUmaKV1s4hQyUA9SMF4ppCDLkkgF/8IAQJWJZIyO688naK4zCe8JeBZMZaWxbA== X-Received: by 10.50.59.146 with SMTP id z18mr6499354igq.62.1458144239885; Wed, 16 Mar 2016 09:03:59 -0700 (PDT) MIME-Version: 1.0 Received: by 10.79.0.211 with HTTP; Wed, 16 Mar 2016 09:03:40 -0700 (PDT) In-Reply-To: References: From: Claus Ibsen Date: Wed, 16 Mar 2016 17:03:40 +0100 Message-ID: Subject: Re: Enable ssl for kafka endpoints To: dev Content-Type: text/plain; charset=UTF-8 Hi Gerard Okay sounds good. Let us know how it goes. Yeah Camel 2.17 has migrated camel-kafka to use their new java library. So there is likely a bunch of changes. And if you find something not being able to configure SSL etc then let us know. And maybe you can find out how to setup SSL with their java library, and see if we miss anything in camel-kafka to allow that. On Wed, Mar 16, 2016 at 1:35 PM, Gerard Klijs wrote: > I'm now in the process of building the project from git, and I noticed it's > already using the new consumer and properties. I will try it out to see if > it works for me. > > On Wed, Mar 16, 2016 at 1:18 PM Gerard Klijs > wrote: > >> The current version of the camel-kafka component already has the latest >> released (0.9.0.1) kafka client included. To be able to use one of the new >> features, mutual ssl authentication with the broker, the >> current camel-kafka component needs some changes: >> - Start using the new kafka consumer (), this changes a lot, different >> properties are needed to create the connection, and a different mechanism >> is used to subscribe to topics, and to get them. >> - Allow at least 5 (preferably all) properties having to do with the ssl >> configuration to be used for the ssl connection, both by the consumer and >> the producer. >> >> I was wondering if anyone is thinking about doing this. We are currently >> considering camel to connect non-java applications to our kafka cluster. We >> are required to use ssl, both for the encryption, and for use with the >> SimpleAclAuthorizer. It might be an option for us to do it ourselves and >> summit the patch. >> >> I just started to take a look at camel, used it to read an xml, and send >> it to kafka as avro, using the confluent schema registry. >> -- Claus Ibsen ----------------- http://davsclaus.com @davsclaus Camel in Action 2: https://www.manning.com/ibsen2