Skip to content

chrismoos/caddy-events-kafka

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits

.github/workflows

.github/workflows

 
 

.gitignore

.gitignore

 
 

LICENSE.txt

LICENSE.txt

 
 

README.md

README.md

 
 

go.mod

go.mod

 
 

go.sum

go.sum

 
 

module.go

module.go

 
 

Repository files navigation

Caddy Kafka Events Handler Module

This module implements an event handler for Caddy that publishes events to a Kafka topic. This is useful if you want to consume events (for example, certificate lifecyle events) in an external system.

Kafka Messages

Messages published to Kafka have a String key, with a unique UUID for the event (from id below). The value is a JSON object of the CloudEvent type from Caddy. For example an event produced when a certificate is obtained:

{
    "id": "7589856b-df84-49d1-91d7-2dc3b6c5eded",
    "source": "tls",
    "specversion": "1.0",
    "type": "cert_obtained",
    "time": "2023-08-14T18:09:35.984688502Z",
    "datacontenttype": "application/json",
    "data": {
        "certificate_path": "certificates/acme.zerossl.com-v2-dv90/www.exampledomain.com/www.exampledomain.com.crt",
        "identifier": "www.exampledomain.com",
        "issuer": "acme.zerossl.com-v2-DV90",
        "metadata_path": "certificates/acme.zerossl.com-v2-dv90/www.exampledomain.com/www.exampledomain.com.json",
        "private_key_path": "certificates/acme.zerossl.com-v2-dv90/www.exampledomain.com/www.exampledomain.com.key",
        "renewal": false,
        "storage_path": "certificates/acme.zerossl.com-v2-dv90/www.exampledomain.com"
    }
}

Installation

You can use xcaddy to build Caddy with this module.

$ xcaddy build --with github.com/chrismoos/caddy-events-kafka

Configuration

The module supports configuration via Caddyfile or JSON.

Caddyfile

Argument Description Example
bootstrap_servers Comma separated list of bootstrap servers for Kafka 127.0.0.1:9092
topic The Kafka topic to publish events. caddy-events
tls on to enable TLS, or off (default) to disable tls on
tls_no_verify DANGER: If present, disables TLS peer verification, this should only be used for testing and not production. defaults to off (TLS verification enabled)
sasl_scram If specified, enables SASL authentication. The mechanism (sha256 or sha512) must be specified, as well as a username and password. sasl_scram sha512 "myuser" "mypassword"

JSON

{
    "bootstrap_servers": ["127.0.0.1:9092"],
    "topic": "caddy-events",
    "tls_enabled": true,
    "tls_no_verify": false,
    "sasl_auth": true,
    "sasl_username": "myuser",
    "sasl_password": "mypassword"
}

Caddyfile Examples

TLS + SASL Authentication

{
	events {
		on "*" kafka {
			bootstrap_servers "localhost:9096"
			topic "caddy-events"
			tls on
			sasl_scram sha512 "sasl_user" "sasl_password"
		}
	}
}

localhost
respond "Hello"

Plaintext

{
	events {
		on "*" kafka {
			bootstrap_servers "localhost:29092"
			topic "caddy-events"
		}
	}
}

localhost
respond "Hello"

About

No description, website, or topics provided.

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases 1

v0.1.0 Latest
Aug 15, 2023

Packages

No packages published

Languages