config/zookeeper.properties 中添加了如下配置:
authProvider.1=org.apache.zookeeper.server.auth.SASLAuthenticationProvider
requireClientAuthScheme=sasl
jaasLoginRenew=3600000
定义了 /opt/kafka/config/zk_server_jaas.conf
Server {
org.apache.kafka.common.security.plain.PlainLoginModule required
username="admin"
password="admin-123"
user_kafka="kafka-1234"
user_producer="1234567";
};
zookeeper-server-start.sh 启动脚本改成了:
exec $base_dir/kafka-run-class.sh $EXTRA_ARGS -Djava.security.auth.login.config=/opt/kafka/config/zk_server_jaas.conf org.apache.zookeeper.server.quorum.QuorumPeerMain "$@"
但是实际配置下来就是配置不生效,ZK 不需要密码仍然可以访问