-
Notifications
You must be signed in to change notification settings - Fork 4.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Feature Request] SSL for Kafka Connection #8230
Comments
hi, thingsboard can work with kafka+ssl.
` |
Hi @ban2derlog, I tested the environment variable
It seems the root cause is no option for JKS file path |
@FawenYo, ThingsBoard has
|
Hi @smatvienko-tb , thanks for your advice. But in
or do I miss something? |
Hi @FawenYo ! in the yaml file you need just put a text values:
|
Additional Kafka client parameters: |
Hi, thanks for your help! I didn't find your mentioned code in the thingsboard project Besides, I checked the yaml file you mentioned, so in that way, I still need to modify the yaml and build the docker image myself? Or I can just set some values to Docker environment variable? |
Hi!
You need to map a custom yaml file with a standard docker image. After that, you will be able to apply new environment variables. Yes, it's not super easy for future updates. But the scope of work is minimal compared to custom build. |
Hi @smatvienko-tb, so I tried to use
And I set the value with
But after modified the pod still keep restarting, below is the error log. Do I missed some settings? |
@FawenYo the issue you send has a clear cause (the keystore password is not specified) : |
Thanks! I miss type the key
Thanks for your help! It seems to be working now. So maybe this can be implemented in a future build? |
@FawenYo Thank you for your feature request and very first PR as well. |
@FawenYo could you try to attach the second /usr/share/thingsboard/conf/thingsboard-override.yml with only your lines (no need to copy-paste the whole yaml) And set environment variables for your deployment like
It works for me fine |
Hi @smatvienko-tb , I tested it with my environment, and it seems to work! Maybe this can be added to README/docs as a temporary Kafka SSL solution since it's a more elegant way to do? |
the hack with TB_QUEUE_KAFKA_USE_CONFLUENT_CLOUD=true seems to work |
Hi, I'm attempting to utilize Kafka as a queue service for Thingsboard.
I have already created my Kafka with Bitnami packaged version (charts/bitnami/kafka at main · bitnami/charts (github.com)) and enable SSL/TLS (
auth.clientProtocol
: tls).However, when I tried to start up Thingsboatd, it just kept crashing because it couldn't list Kafka topics. At the same time, I saw the following error logs in Kafka:
I looked through the configuration docs of the Thingsboard (Configuration properties | ThingsBoard Community Edition) but found no configuration for Kafka SSL option.
I also took a quick look at the code and found that Thingsboard seems to not support Kafka SSL for now (e.g. thingsboard/TbKafkaSettings.java at 1be933622db1157f79a2d790e5547984344c7387 · thingsboard/thingsboard (github.com)).
Could you please add a feature for Kafka SSL option? Thanks!
The text was updated successfully, but these errors were encountered: