Class ConfluentKeyProviderCreator
- All Implemented Interfaces:
org.apache.kafka.common.Configurable, org.apache.kafka.common.security.auth.SecurityProviderCreator
ConfluentKeyProvider during broker startup and handles
dynamic configuration updates.
This class is instantiated via reflection by SecurityUtils.addConfiguredSecurityProviders().
The provider is created once with initial configs. For dynamic config updates, the
configure(Map) method is called again, which updates the existing provider's
configuration via ConfluentKeyProvider.updateConfigs(Map).
ConfluentKeyProvider registers ConfluentKeyManagerFactory which creates
ConfluentKeyManager for selecting client certificates during outbound mTLS connections
(when the broker acts as a TLS client).
The provider only updates its configuration when the incoming configs contain
client-side dynamic config keys (e.g., confluent.spire.clientside.validation.enabled).
This ensures that only legitimate broker configuration updates modify the provider state.
- See Also:
-
Constructor Summary
Constructors -
Method Summary
-
Constructor Details
-
ConfluentKeyProviderCreator
public ConfluentKeyProviderCreator()
-
-
Method Details
-
getProvider
- Specified by:
getProviderin interfaceorg.apache.kafka.common.security.auth.SecurityProviderCreator
-
configure
-