Spring Boot application demonstrating authenticating with Kafka using SASL PLAIN.
This repo accompanies the article Kafka SASL Authentication: Spring Boot Demo.
mvn clean install
From the root dir run the docker-compose files to start dockerised Kafka, Zookeeper:
docker-compose up -d
This binds the ./kafka-client-config/client.properties file, in the root of this project, to the Kafka container. This properties file contains the SASL configuration required for the Kafka command line tools to successfully authenticate with Kafka when producing and consuming events.
To start the application use:
java -jar target/kafka-sasl-plain-1.0.0.jar
Produce a message to demo-inbound-topic:
docker exec -it kafka kafka-console-producer \
--topic demo-inbound-topic \
--bootstrap-server kafka:29092 \
--producer.config /kafka-client-config/client.properties
Now enter the message:
{"sequenceNumber": "1"}
The demo-inbound message is consumed by the application, which emits a resulting demo-outbound message.
Check for the emitted message on the demo-outbound-topic:
docker exec -it kafka kafka-console-consumer \
--topic demo-outbound-topic \
--bootstrap-server kafka:29092 \
--consumer.config /kafka-client-config/client.properties \
--from-beginning
Output:
{"sequenceNumber":"1"}
Run integration tests with mvn clean test
The tests demonstrate sending events to an embedded in-memory Kafka that are consumed by the application, resulting in outbound events being published.
SASL is disabled for the integration tests (in src/test/resources/application-test.yml config kafka.sasl.enabled: false. This is because these tests uses the embedded Kafka broker which does not support SASL.
The tests demonstrate sending events to a dockerised Kafka that are consumed by the dockerised application, resulting in outbound events being published.
SASL PLAIN authentication is enabled in the Component Test Framework, via the maven-surefire-plugin component plugin configuration. kafka.sasl.plain.enabled is set to true. This requires that consumers and producers connecting to Kafka authenticate using SASL PLAIN. This applies to both the application and the test consumers and producers.
For more on the component tests see: https://github.com/lydtechconsulting/component-test-framework
Build Spring Boot application jar:
mvn clean install
Build Docker container:
docker build -t ct/kafka-sasl-plain:latest .
Run tests (by default the containers are torn down after the test run):
mvn test -Pcomponent
Run tests leaving the containers up at the end:
mvn test -Pcomponent -Dcontainers.stayup=true
Manual clean up (if left containers up):
docker rm -f $(docker ps -aq)
Further docker clean up (if network issues and to remove old networks/volumes):
docker network prune
docker system prune
docker volume prune