kafka-manager
Kafka 0.8.. or 0.9.. or 0.10.. or 0.11..
Java 11+
[ root@kafka ~]
[ root@kafka ~]
[ root@kafka localhost]
[ root@kafka localhost]
[ root@kafka conf]
[ root@kafka conf]
cmak.zkhosts= "192.168.57.130:12181,192.168.57.131:12181,192.168.57.132:12181"
[ root@kafka conf]
[ root@kafka bin]
[ root@kafka bin]
[ root@kafka bin]
配置文件解释(从github上拉取的)
play.crypto.secret = “ ^ < csmm5Fx4d = r2HEX8pelM3iBkFVv?k [ mc; IZE < _Qoq8EkX_ / 7 @ Zt6dP05Pzea3U”
play.crypto.secret = $ { ?APPLICATION_SECRET}
play.http.session.maxAge = “ 1h”
play.i18n.langs = [ “ en”]
play.http.requestHandler = “ play.http.DefaultHttpRequestHandler”
play.http.context = “ /”
play.application.loader = loader.KafkaManagerLoader
kafka-manager.zkhosts = “ kafka-manager-zookeeper:2181”
kafka-manager.zkhosts = $ { ?ZK_HOSTS}
cmak.zkhosts = “ kafka-manager-zookeeper:2181”
cmak.zkhosts = $ { ?ZK_HOSTS}
pinned-dispatcher.type = “ PinnedDispatcher”
pinned-dispatcher.executor = “线程池执行器”
application.features = [ “” KMClusterManagerFeature“,” KMTopicManagerFeature“,” KMPreferredReplicaElectionFeature“,” KMReassignPartitionsFeature“,” KMScheduleLeaderElectionFeature“]
阿卡{
记录器= [ “ akka.event.slf4j.Slf4jLogger”]
loglevel = “ INFO”
}
akka.logger-startup-timeout = 60s
basicAuthentication.enabled = false
basicAuthentication.enabled = $ { ?KAFKA_MANAGER_AUTH_ENABLED}
basicAuthentication.ldap.enabled = false
basicAuthentication.ldap.enabled = $ { ?KAFKA_MANAGER_LDAP_ENABLED}
basicAuthentication.ldap.server = “”
basicAuthentication.ldap.server = $ { ?KAFKA_MANAGER_LDAP_SERVER}
basicAuthentication.ldap.port = 389
basicAuthentication.ldap.port = $ { ?KAFKA_MANAGER_LDAP_PORT}
basicAuthentication.ldap.username = “”
basicAuthentication.ldap.username = $ { ?KAFKA_MANAGER_LDAP_USERNAME}
basicAuthentication.ldap.password = “”
basicAuthentication.ldap.password = $ { ?KAFKA_MANAGER_LDAP_PASSWORD}
basicAuthentication.ldap.search-base-dn = “”
basicAuthentication.ldap.search-base-dn = $ { ?KAFKA_MANAGER_LDAP_SEARCH_BASE_DN}
basicAuthentication.ldap.search-filter = “(uid = $ capturedLogin $)”
basicAuthentication.ldap.search-filter = $ { ?KAFKA_MANAGER_LDAP_SEARCH_FILTER}
basicAuthentication.ldap.group-filter = “”
basicAuthentication.ldap.group-filter = $ { ?KAFKA_MANAGER_LDAP_GROUP_FILTER}
basicAuthentication.ldap.connection-pool-size = 10
basicAuthentication.ldap.connection-pool-size = $ { ?KAFKA_MANAGER_LDAP_CONNECTION_POOL_SIZE}
basicAuthentication.ldap.ssl = false
basicAuthentication.ldap.ssl = $ { ?KAFKA_MANAGER_LDAP_SSL}
basicAuthentication.ldap.ssl-trust-all = false
basicAuthentication.ldap.ssl-trust-all = $ { ?KAFKA_MANAGER_LDAP_SSL_TRUST_ALL}
basicAuthentication.username = “ admin”
basicAuthentication.username = $ { ?KAFKA_MANAGER_USERNAME}
basicAuthentication.password = “密码”
basicAuthentication.password = $ { ?KAFKA_MANAGER_PASSWORD}
basicAuthentication.realm = “ Kafka-管理器”
basicAuthentication.excluded = [ “ / api / health”]
kafka-manager.consumer.properties.file = $ { ?CONSUMER_PROPERTIES_FILE}
cmak.zkhosts= "my.zookeeper.host.com:2181"
cmak.zkhosts= "my.zookeeper.host.com:2181,other.zookeeper.host.com:2181"
ZK_HOSTS= "my.zookeeper.host.com:2181"
application.features= [ "KMClusterManagerFeature" ,"KMTopicManagerFeature" ,"KMPreferredReplicaElectionFeature" ,"KMReassignPartitionsFeature" ]
KMClusterManagerFeature-'允许从CMAK添加,更新,删除集群(pka Kafka Manager)
KMTopicManagerFeature-' 允许从Kafka集群添加,更新,删除主题
KMPreferredReplicaElectionFeature-'允许运行Kafka集群的首选副本选举
KMReassignPartitionsFeature-' 允许生成分区分配并重新分配分区
cmak.broker-view-thread-pool-size = < 3 '经纪人人数' >
cmak.broker-view-max-queue-size = < 3 '所有主题的分区总数' >
cmak.broker-view-update-seconds = < cmak.broker-view-max-queue-size /(10 * number_of_brokers)>
cmak.broker-view-thread-pool-size = 30
cmak.broker-view-max-queue-size = 3000
cmak.broker-view-update-seconds = 30
cmak.offset-cache-thread-pool-size = < '默认为处理器数量' >
cmak.offset-cache-max-queue-size = < '默认值为1000' >
cmak.kafka-admin-client-thread-pool-size = < '默认为处理器数量' >
cmak.kafka-admin-client-max-queue-size = < '默认值为1000' >
使用LDAP验证用户
您需要使用CMAK(pka Kafka管理器)配置SSL,以确保您的凭据不会未经加密地传递。通过将用户凭据与Authorization标头一起传递,可以使用LDAP验证用户。首次访问时会进行LDAP身份验证,如果成功,则会设置一个cookie。在下一个请求时,将cookie值与Authorization标头中的凭据进行比较。LDAP支持通过基本身份验证过滤器进行。
basicAuthentication.enabled = true
basicAuthentication.realm = < '基本身份验证领域' >
basicAuthentication.salt = '某些十六进制字符串表示字节数组'
basicAuthentication.iv = "某些十六进制字符串表示字节数组"
basicAuthentication.secret = "my-secret-string"
basicAuthentication.ldap.enabled = < '用于启用/禁用ldap认证的布尔标志' >
basicAuthentication.ldap.server = < 'LDAP服务器的fqdn' >
basicAuthentication.ldap.port = < 'LDAP服务器的端口' >
basicAuthentication.ldap.username = < 'LDAP搜索用户名' >
basicAuthentication.ldap.password = < 'LDAP搜索密码' >
basicAuthentication.ldap.search-base-dn = < 'LDAP搜索库' >
basicAuthentication.ldap.search-filter = < 'LDAP搜索过滤器' >
basicAuthentication.ldap.connection-pool-size = < '与LDAP服务器的连接数' >
basicAuthentication.ldap.ssl = < '用于启用/禁用LDAPS的布尔标志' >
basicAuthentication.ldap.group-filter = < 'LDAP组过滤器' >
basicAuthentication.ldap.ssl-trust-all = < '用于允许未过期无效证书的布尔标志' >
basicAuthentication.ldap.enabled = true
basicAuthentication.ldap.server = “ ldap.forumsys.com”
basicAuthentication.ldap.port = 389
basicAuthentication.ldap.username = “ cn = 只读管理员,dc = 示例,dc = com”
basicAuthentication.ldap.password = “密码”
basicAuthentication.ldap.search-base-dn = “ dc = example,dc = com”
basicAuthentication.ldap.search-filter = “(uid = $ capturedLogin $)”
basicAuthentication.ldap.group-filter = “ cn = 允许组,ou = 组,dc = 示例,dc = com”
basicAuthentication.ldap.connection-pool-size = 10
basicAuthentication.ldap.ssl = false
basicAuthentication.ldap.ssl-trust-all = false