KIP-43 — Kafka SASL enhancements
Accepted Security
KIP-43 adds a pluggable SASL mechanism framework to Kafka, allowing operators to configure SASL mechanisms beyond GSSAPI/Kerberos (e.g., PLAIN, SCRAM, OAuth) by implementing a `SaslClientCallbackHandler` / `SaslServerCallbackHandler` interface. Kafka 0.9's SASL support was hardcoded to GSSAPI, preventing integration with non-Kerberos authentication infrastructure.
Protocol Impact
Details
| Author | Rajini Sivaram |
| Status | Accepted |
| JIRA | KAFKA-3149 |
| Wiki | View on Apache Wiki |
| Created | 2016-01-25 |
| Last Modified | 2016-05-03 |
Explore how this KIP affects the Kafka protocol in the Protocol Explorer, or see the full KIP database.