Skip to content

Add proposal for supporting SSL for KafkaBridge #171

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 8 commits into
base: main
Choose a base branch
from
Open

Add proposal for supporting SSL for KafkaBridge #171

wants to merge 8 commits into from
+155 −0

Conversation

tinaselenge
Copy link
Contributor

@tinaselenge tinaselenge commented Aug 21, 2025
edited
Loading

scholzj
scholzj reviewed Aug 22, 2025
View reviewed changes
Copy link
Member

@scholzj scholzj left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Just some quick thoughts.

@scholzj
Copy link
Member

scholzj commented Aug 22, 2025

The way we setup the certificates seems also important to whether we ever expect to have some better scalability or not I guess.

ppatierno
ppatierno reviewed Sep 1, 2025
View reviewed changes
@tinaselenge
Copy link
Contributor Author

The way we setup the certificates seems also important to whether we ever expect to have some better scalability or not I guess.

With this proposal, the same certificate and key (via referenced secret in the CR) will be volume mounted into each KafkaBridge pod if it is scaled to multiple replicas, which is not different than how TLS authentication is configured for KafkaBridge talking to Kafka. My understanding is that KafkaBridge is not truly scalable in terms of consumers, but I'm not sure what is the expectation at the moment, in terms of improving that and what to consider for the certificate setup.

@tinaselenge tinaselenge marked this pull request as ready for review September 2, 2025 17:43
@tinaselenge
Copy link
Contributor Author

I've marked this as ready for review now :)

ppatierno
ppatierno reviewed Sep 3, 2025
View reviewed changes
scholzj
scholzj reviewed Sep 7, 2025
View reviewed changes
@ppatierno ppatierno mentioned this pull request Sep 9, 2025
Merged
scholzj
scholzj reviewed Sep 14, 2025
View reviewed changes
im-konge
im-konge reviewed Sep 17, 2025
View reviewed changes
Copy link
Member

@im-konge im-konge left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the proposal, it looks good to me, just few small things.

@tinaselenge
Address review comments
de4f687 
Signed-off-by: Gantigmaa Selenge <[email protected]>
im-konge
im-konge approved these changes Sep 19, 2025
View reviewed changes
Copy link
Member

@im-konge im-konge left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks a lot Tina :)

scholzj
scholzj reviewed Sep 24, 2025
View reviewed changes
Copy link
Member

@scholzj scholzj left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Few more nits. Mostly formatting. The only real point for discussion is about the SSL protocols. Looks good otherwise.

@tinaselenge
Address comments from Jakub
aaead9b 
Signed-off-by: Gantigmaa Selenge <[email protected]>
scholzj
scholzj approved these changes Sep 24, 2025
View reviewed changes
Copy link
Member

@scholzj scholzj left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks. LGTM, +1 binding.

@tinaselenge
Copy link
Contributor Author

Thank you so much @scholzj @im-konge!

@ppatierno could you please take another look when you get a chance? Thank you!

@PaulRMellor @katheris could you please also take a look if you have time? Thank you!

PaulRMellor
PaulRMellor reviewed Oct 8, 2025
View reviewed changes
Copy link
Contributor

@PaulRMellor PaulRMellor left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks, Tina.
I made some suggestions as I read though.
I wonder if the proposal would benefit from mentioning requirements for documentation and testing?

katheris
katheris reviewed Oct 9, 2025
View reviewed changes
Copy link
Contributor

@katheris katheris left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Overall this makes sense to me, I just added some clarification and wording comments

@tinaselenge
Address comments from Paul and Kate
60b131b 
Signed-off-by: Gantigmaa Selenge <[email protected]>
PaulRMellor
PaulRMellor approved these changes Oct 13, 2025
View reviewed changes
Copy link
Contributor

@PaulRMellor PaulRMellor left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the updates, Tina

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@scholzj scholzj scholzj approved these changes

@katheris katheris katheris left review comments

@im-konge im-konge im-konge approved these changes

@PaulRMellor PaulRMellor PaulRMellor approved these changes

@tombentley tombentley Awaiting requested review from tombentley

@ppatierno ppatierno Awaiting requested review from ppatierno

@Frawless Frawless Awaiting requested review from Frawless

@sknot-rh sknot-rh Awaiting requested review from sknot-rh

@see-quick see-quick Awaiting requested review from see-quick

@samuel-hawker samuel-hawker Awaiting requested review from samuel-hawker

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@tinaselenge @scholzj @ppatierno @katheris @PaulRMellor @im-konge