KIP-702 — The control plane needs to force the validation of requests from the controller
Discussion ProtocolBroker
KIP-702 proposes a `control.plane.force.controller.requests.enable` broker config that, when enabled, causes the control-plane listener to reject all non-controller requests (`LeaderAndIsr`, `UpdateMetadata`, `StopReplica`, `ControlledShutdown` are the only allowed types). Without enforcement, a misconfigured client pointing its `bootstrap.servers` at the control-plane listener can mix data traffic with controller traffic, degrading controller performance and violating the isolation designed by KIP-291.
Protocol Impact
Metadata · LeaderAndIsr · StopReplica · UpdateMetadata
Details
| Author | Wenbing Shen |
| Status | Discussion |
| JIRA | KAFKA-10891 |
| Wiki | View on Apache Wiki |
| Created | 2021-01-05 |
| Last Modified | 2021-01-06 |
Explore how this KIP affects the Kafka protocol in the Protocol Explorer, or see the full KIP database.