public class ConfluentServerAuthorizer
extends io.confluent.security.authorizer.EmbeddedAuthorizer
implements org.apache.kafka.server.authorizer.Authorizer, org.apache.kafka.common.Reconfigurable
Constructor and Description |
---|
ConfluentServerAuthorizer() |
Modifier and Type | Method and Description |
---|---|
Iterable<org.apache.kafka.common.acl.AclBinding> |
acls(org.apache.kafka.common.acl.AclBindingFilter filter) |
List<org.apache.kafka.server.authorizer.AuthorizationResult> |
authorize(org.apache.kafka.server.authorizer.AuthorizableRequestContext requestContext,
List<org.apache.kafka.server.authorizer.Action> actions) |
org.apache.kafka.server.authorizer.AuthorizationResult |
authorizeByResourceType(org.apache.kafka.server.authorizer.AuthorizableRequestContext requestContext,
org.apache.kafka.common.acl.AclOperation op,
org.apache.kafka.common.resource.ResourceType resourceType) |
protected Optional<org.apache.kafka.server.authorizer.Authorizer> |
centralizedAclProvider() |
void |
configure(Map<String,?> configs) |
void |
configureServerInfo(org.apache.kafka.server.authorizer.internals.ConfluentAuthorizerServerInfo serverInfo) |
List<? extends CompletionStage<org.apache.kafka.server.authorizer.AclCreateResult>> |
createAcls(org.apache.kafka.server.authorizer.AuthorizableRequestContext requestContext,
List<org.apache.kafka.common.acl.AclBinding> aclBindings) |
List<? extends CompletionStage<org.apache.kafka.server.authorizer.AclCreateResult>> |
createAcls(org.apache.kafka.server.authorizer.AuthorizableRequestContext requestContext,
List<org.apache.kafka.common.acl.AclBinding> aclBindings,
Optional<String> clusterId) |
List<? extends CompletionStage<org.apache.kafka.server.authorizer.AclDeleteResult>> |
deleteAcls(org.apache.kafka.server.authorizer.AuthorizableRequestContext requestContext,
List<org.apache.kafka.common.acl.AclBindingFilter> aclBindingFilters) |
List<? extends CompletionStage<org.apache.kafka.server.authorizer.AclDeleteResult>> |
deleteAcls(org.apache.kafka.server.authorizer.AuthorizableRequestContext requestContext,
List<org.apache.kafka.common.acl.AclBindingFilter> aclBindingFilters,
Optional<String> clusterId) |
io.confluent.security.authorizer.Action |
getAction(org.apache.kafka.server.authorizer.Action kafkaAction,
io.confluent.security.authorizer.ResourcePattern resourcePattern,
org.apache.kafka.common.security.auth.KafkaPrincipal principal) |
Set<String> |
reconfigurableConfigs() |
void |
reconfigure(Map<String,?> configs) |
Map<org.apache.kafka.common.Endpoint,? extends CompletionStage<Void>> |
start(org.apache.kafka.server.authorizer.AuthorizerServerInfo serverInfo) |
void |
validateReconfiguration(Map<String,?> configs) |
protected Optional<org.apache.kafka.server.authorizer.Authorizer> |
zkAclProvider() |
accessRuleProvider, accessRuleProviders, actionForAuthorizeByResourceType, auditLogProvider, authorize, authorizeByResourceType, close, configureProviders, groupProvider, isSuperUser, logAuditMessage, metadataProvider, metrics, metricsTime, ready, scope, setupAuthorizerMetrics, start
public void configure(Map<String,?> configs)
configure
in interface org.apache.kafka.common.Configurable
configure
in class io.confluent.security.authorizer.EmbeddedAuthorizer
public Set<String> reconfigurableConfigs()
reconfigurableConfigs
in interface org.apache.kafka.common.Reconfigurable
public void validateReconfiguration(Map<String,?> configs) throws org.apache.kafka.common.config.ConfigException
validateReconfiguration
in interface org.apache.kafka.common.Reconfigurable
org.apache.kafka.common.config.ConfigException
public void reconfigure(Map<String,?> configs)
reconfigure
in interface org.apache.kafka.common.Reconfigurable
public void configureServerInfo(org.apache.kafka.server.authorizer.internals.ConfluentAuthorizerServerInfo serverInfo)
configureServerInfo
in class io.confluent.security.authorizer.EmbeddedAuthorizer
protected Optional<org.apache.kafka.server.authorizer.Authorizer> zkAclProvider()
protected Optional<org.apache.kafka.server.authorizer.Authorizer> centralizedAclProvider()
public Map<org.apache.kafka.common.Endpoint,? extends CompletionStage<Void>> start(org.apache.kafka.server.authorizer.AuthorizerServerInfo serverInfo)
public List<org.apache.kafka.server.authorizer.AuthorizationResult> authorize(org.apache.kafka.server.authorizer.AuthorizableRequestContext requestContext, List<org.apache.kafka.server.authorizer.Action> actions)
public org.apache.kafka.server.authorizer.AuthorizationResult authorizeByResourceType(org.apache.kafka.server.authorizer.AuthorizableRequestContext requestContext, org.apache.kafka.common.acl.AclOperation op, org.apache.kafka.common.resource.ResourceType resourceType)
public List<? extends CompletionStage<org.apache.kafka.server.authorizer.AclCreateResult>> createAcls(org.apache.kafka.server.authorizer.AuthorizableRequestContext requestContext, List<org.apache.kafka.common.acl.AclBinding> aclBindings)
public List<? extends CompletionStage<org.apache.kafka.server.authorizer.AclCreateResult>> createAcls(org.apache.kafka.server.authorizer.AuthorizableRequestContext requestContext, List<org.apache.kafka.common.acl.AclBinding> aclBindings, Optional<String> clusterId)
public List<? extends CompletionStage<org.apache.kafka.server.authorizer.AclDeleteResult>> deleteAcls(org.apache.kafka.server.authorizer.AuthorizableRequestContext requestContext, List<org.apache.kafka.common.acl.AclBindingFilter> aclBindingFilters)
public List<? extends CompletionStage<org.apache.kafka.server.authorizer.AclDeleteResult>> deleteAcls(org.apache.kafka.server.authorizer.AuthorizableRequestContext requestContext, List<org.apache.kafka.common.acl.AclBindingFilter> aclBindingFilters, Optional<String> clusterId)
public Iterable<org.apache.kafka.common.acl.AclBinding> acls(org.apache.kafka.common.acl.AclBindingFilter filter)
public io.confluent.security.authorizer.Action getAction(org.apache.kafka.server.authorizer.Action kafkaAction, io.confluent.security.authorizer.ResourcePattern resourcePattern, org.apache.kafka.common.security.auth.KafkaPrincipal principal)