sasl.oauthbearer.assertion.file — Kafka Broker Configuration

File that contains a pre-generated JWT assertion.The underlying implementation caches the file contents to avoid the performance hit of loading the file on each access.

Description

File that contains a pre-generated JWT assertion.The underlying implementation caches the file contents to avoid the performance hit of loading the file on each access. The caching mechanism will detect whenthe file changes to allow for the file to be reloaded on modifications. This allows for "live" assertion rotation without restarting the Kafka client.The file contains the assertion in the serialized, three part JWT format:The header section is a base 64-encoded JWT header that contains values like alg (Algorithm), typ (Type, always the literal value JWT), etc.The payload section includes the base 64-encoded set of JWT claims, such as aud (Audience), iss (Issuer), sub (Subject), etc.The signature section is the concatenated header and payload sections that was signed using a private keySee RFC 7519 and RFC 7515 for more details on the JWT and JWS formats.Note: If a value for sasl.oauthbearer.assertion.file is provided, all other sasl.oauthbearer.assertion.* configurations are ignored.

Default Values by Kafka Version