KIP-208 — Add SSL support to Kafka Connect REST interface
Accepted Kafka 1.1 ConnectSecurity
Adds TLS/SSL and optional mutual TLS (mTLS) authentication to the Kafka Connect REST interface via new `listeners.https.*` and `rest.ssl.*` configs. The Connect REST API transmits connector configurations (which often contain passwords) over plain HTTP, and has no authentication mechanism to prevent unauthorized connector creation or modification.
Details
| Author | Jakub Scholz |
| Status | Accepted |
| Kafka Version | 1.1 |
| JIRA | KAFKA-4029 |
| Wiki | View on Apache Wiki |
| Created | 2017-10-09 |
| Last Modified | 2018-01-30 |
Explore how this KIP affects the Kafka protocol in the Protocol Explorer, or see the full KIP database.