KIP-473 — Enable KafkaLog4JAppender to use SASL Authentication Callback Handlers
Discussion SecurityClient
Extends `KafkaLog4JAppender` to support pluggable SASL authentication callback handlers via `sasl.login.callback.handler.class` and `sasl.client.callback.handler.class` properties, consistent with KIP-86. The existing `KafkaLog4JAppender` with SASL (added by KIP-425) requires credentials to be hardcoded in the JAAS configuration, preventing use of dynamic credential providers like AWS IAM or Vault for log appenders.
Details
| Author | Ryan Pridgeon |
| Status | Discussion |
| JIRA | KAFKA-8419 |
| Wiki | View on Apache Wiki |
| Created | 2019-05-23 |
| Last Modified | 2019-05-24 |
Explore how this KIP affects the Kafka protocol in the Protocol Explorer, or see the full KIP database.