forked from conduktor/kafka-security-manager
-
Notifications
You must be signed in to change notification settings - Fork 0
/
application.conf
117 lines (105 loc) · 2.97 KB
/
application.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
ksm {
debug = false
debug = ${?KSM_DEBUG}
extract = false
extract = ${?KSM_EXTRACT}
refresh.frequency.ms = 10000
refresh.frequency.ms = ${?KSM_REFRESH_FREQUENCY_MS}
readonly = true
readonly = ${?KSM_READONLY}
}
parser {
csv {
delimiter = ","
delimiter = ${?ACL_PARSER_CSV_DELIMITER}
}
}
authorizer {
class = "kafka.security.auth.SimpleAclAuthorizer"
class = ${?AUTHORIZER_CLASS}
config {
"zookeeper.connect" = "localhost:2181"
"zookeeper.connect" = ${?AUTHORIZER_ZOOKEEPER_CONNECT}
"zookeeper.connection.timeout.ms" = ${?AUTHORIZER_CONNECTION_TIMEOUT_MS}
"zookeeper.session.timeout.ms" = ${?AUTHORIZER_SESSION_TIMEOUT_MS}
"zookeeper.set.acl" = "false"
"zookeeper.set.acl" = ${?AUTHORIZER_ZOOKEEPER_SET_ACL}
}
}
source {
// we default to a no "source" acl
class = "com.github.simplesteph.ksm.source.NoSourceAcl"
class = ${?SOURCE_CLASS}
file {
filename = "example/acls.csv"
filename = ${?SOURCE_FILE_FILENAME}
}
github {
user = "simplesteph"
user = ${?SOURCE_GITHUB_USER}
repo = "kafka-security-manager"
repo = ${?SOURCE_GITHUB_REPO}
filepath = "example/acls.csv"
filepath = ${?SOURCE_GITHUB_FILEPATH}
branch = "master"
branch = ${?SOURCE_GITHUB_BRANCH}
hostname = "api.github.com"
// hostname for private github is: hostname/api/v3
hostname = ${?SOURCE_GITHUB_HOSTNAME}
auth {
// of the form username:password or username:token
basic = ${?SOURCE_GITHUB_BASIC}
// oauth2 token or SAML token
token = ${?SOURCE_GITHUB_TOKEN}
}
}
s3 {
region = ${?SOURCE_S3_REGION}
bucketname = ${?SOURCE_S3_BUCKETNAME}
objectkey = ${?SOURCE_S3_OBJECTKEY}
}
bitbucket-server {
hostname = "localhost"
hostname = ${?SOURCE_BITBUCKET_SERVER_HOSTNAME}
port = "7990"
port = ${?SOURCE_BITBUCKET_SERVER_PORT}
protocol = "http"
protocol = ${?SOURCE_BITBUCKET_SERVER_PROTOCOL}
project = "KAF"
project = ${?SOURCE_BITBUCKET_SERVER_PROJECT}
repo = "kafka-acls"
repo = ${?SOURCE_BITBUCKET_SERVER_REPO}
filepath = "acls.csv"
filepath = ${?SOURCE_BITBUCKET_SERVER_FILEPATH}
auth {
username = ${?SOURCE_BITBUCKET_SERVER_AUTH_USERNAME}
password = ${?SOURCE_BITBUCKET_SERVER_AUTH_PASSWORD}
}
}
}
notification {
class = "com.github.simplesteph.ksm.notification.ConsoleNotification"
class = ${?NOTIFICATION_CLASS}
console {
}
slack {
// https://hooks.slack.com/services/etc/etc/etc
webhook = ${?NOTIFICATION_SLACK_WEBHOOK}
username = "Kafka Security Manager"
username = ${?NOTIFICATION_SLACK_USERNAME}
icon = "https://cdn.iconscout.com/public/images/icon/free/png-512/kafka-logo-brand-3f2f9aed5b9ae1e2-512x512.png"
icon = ${?NOTIFICATION_SLACK_ICON}
channel = "general"
channel = ${?NOTIFICATION_SLACK_CHANNEL}
}
}
feature {
grpc = false
grpc = ${?FEATURE_GRPC}
}
grpc {
port = 50051
port = ${?GRPC_PORT}
gateway.port = 50052
gateway.port = ${?GRPC_GATEWAY_PORT}
}