-
Notifications
You must be signed in to change notification settings - Fork 33
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
"ssl.endpoint.identification.algorithm=" don`t work #37
Comments
Thanks for reporting this issue. First the correct name of the ENV variable would be I will debug this issue and see if there is an easy fix to this. The kafka client config is shown in the keycloak log. What is the value shown there for that property? |
Thanks for quick answer! I tried with KAFKA_ENDPOINT_IDENTIFICATION_ALGORITHM=, KAFKA_SSL_ENDPOINT_IDENTIFICATION_ALGORITHM=, SSL_ENDPOINT_IDENTIFICATION_ALGORITHM=.
Of course I tried keycloak.conf: spi-events-listener-kafka-ssl-endpoint-identification-algorithm= without ENV. In all situation, in confing when servers starts, value became https. Tried none, null values, in this situation value displayed correctly (as input), bot no effect. |
I can confirm the |
@perlmaxm I wasn't able to find a proper solution that works on all system so I created a small work around. You can now pass |
@SnuK87 with env tried P.S. Debian 11 |
@perlmaxm Did you build the branch and use the new .jar file? |
@SnuK87 Oh, sorry. Built another branch. But i catch error: |
@perlmaxm Can you download the .jar from this release? https://github.com/SnuK87/keycloak-kafka/releases/tag/1.1.6-SNAPSHOT That is working for me by passing an ENV variable or the command line argument. If that's not working for you then I need to see the keycloak log and and your start command or a list of your ENV variables |
@SnuK87 don`t work with your jar and env( attach logs when start:
error
|
@perlmaxm I added some debug logs. Please try this jar: https://github.com/SnuK87/keycloak-kafka/releases/download/1.1.6-SNAPSHOT/keycloak-kafka-1.1.6.1-SNAPSHOT-jar-with-dependencies.jar Please add |
@SnuK87 when starts
error
|
In the first 4 lines of the log you can see that you pass 3 optional properties but none of it is If you use ENV variables can you check the output of |
|
Hello @SnuK87, setting env KAFKA_ENDPOINT_IDENTIFICATION_ALGORITHM= or in keycloak.conf: spi-events-listener-kafka-ssl-endpoint-identification-algorithm= , hasn`t effect, and сertificate continues to be checked.
Can you help with this?
KAFKA_CLIENT_ID=keycloak
KAFKA_ADMIN_TOPIC=raw-keycloak-admin-events
KAFKA_BOOTSTRAP_SERVERS=servers
KAFKA_TOPIC=raw-keycloak-events
KAFKA_SASL_MECHANISM=PLAIN
KAFKA_SECURITY_PROTOCOL=SASL_SSL
KAFKA_SASL_JAAS_CONFIG=org.apache.kafka.common.security.plain.PlainLoginModule required username="username" password="pass";
KAFKA_ENDPOINT_IDENTIFICATION_ALGORITHM=
The text was updated successfully, but these errors were encountered: