• Search by APIs
• Search by Words
• Search Projects

• Java
• Python
• JavaScript
• TypeScript
• C++
• Scala
• Blog

• common-docker-master
  • docker-utils
    • main
      • resources
        • log4j.properties
    • pom.xml
    • assembly
      • package.xml
  • kerberos
    • config.sh
    • pom.xml
    • Dockerfile
  • pom.xml
  • LICENSE
  • base
    • license.txt
    • include
      • etc
        • confluent
          • docker
            • mesos-setup.sh
            • bash-config
    • pom.xml
    • test
      • test_base_image.py
    • setup.py
    • Dockerfile.ubi8
    • README.md
    • Dockerfile.deb8
    • requirements.txt
    • Dockerfile.deb9
    • tox.ini
  • CONTRIBUTING.md
  • utility-belt
    • src
      • main
        • java
          • io
            • confluent
              • admin
                • utils
                  • ZookeeperConnectionWatcher.java
                  • TopicSpec.java
                  • cli
                    • ZookeeperReadyCommand.java
                    • TopicEnsureCommand.java
                    • KafkaReadyCommand.java
                  • ClusterStatus.java
                  • TopicEnsure.java
      • test
        • java
          • io
            • confluent
              • admin
                • utils
                  • EmbeddedKafkaCluster.java
                  • ClusterStatusSASLTest.java
                  • ClusterStatusTest.java
                  • TopicEnsureTest.java
                  • ClusterWaitTest.java
                  • EmbeddedZookeeperEnsemble.java
        • bin
          • cli-test.sh
    • pom.xml
    • checkstyle
      • suppressions.xml
    • README.md
  • jmxterm
    • pom.xml
    • Dockerfile.ubi8
    • Dockerfile.deb8
    • Dockerfile.deb9
  • README.md
  • .gitignore
  • Jenkinsfile
  • LICENSE-Apache

/**
 * Copyright 2017 Confluent Inc.
 * <p>
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 * <p>
 * http://www.apache.org/licenses/LICENSE-2.0
 * <p>
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package io.confluent.admin.utils;

import javax.security.auth.login.Configuration;
import org.apache.kafka.clients.CommonClientConfigs;
import org.apache.kafka.common.config.types.Password;
import org.apache.kafka.common.security.auth.SecurityProtocol;
import org.apache.kafka.common.utils.Utils;
import org.junit.AfterClass;
import org.junit.BeforeClass;
import org.junit.Test;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import java.io.IOException;
import java.util.Map;
import java.util.Properties;

import static org.assertj.core.api.Assertions.assertThat;


public class ClusterStatusSASLTest {

  private static final Logger log = LoggerFactory.getLogger(ClusterStatusSASLTest.class);

  private static EmbeddedKafkaCluster kafka;


  @BeforeClass
  public static void setup() throws IOException {
    Configuration.setConfiguration(null);

    kafka = new EmbeddedKafkaCluster(3, 3, true);
    kafka.start();
  }


  @AfterClass
  public static void tearDown() {
    kafka.shutdown();
  }

  @Test(timeout = 120000)
  public void zookeeperReadyWithSASL() throws Exception {
    assertThat(ClusterStatus.isZookeeperReady(this.kafka.getZookeeperConnectString(), 10000))
        .isTrue();
  }

  @Test(timeout = 120000)
  public void isKafkaReadyWithSASLAndSSL() throws Exception {
    Properties clientSecurityProps = kafka.getClientSecurityConfig();

    Map<String, String> config = Utils.propsToStringMap(clientSecurityProps);
    config.put(CommonClientConfigs.BOOTSTRAP_SERVERS_CONFIG, kafka.getBootstrapBroker
        (SecurityProtocol.SASL_SSL));

    // Set password and enabled protocol as the Utils.propsToStringMap just returns toString()
    // representations and these properties don't have a valid representation.
    Password trustStorePassword = (Password) clientSecurityProps.get("ssl.truststore.password");
    config.put("ssl.truststore.password", trustStorePassword.value());
    config.put("ssl.enabled.protocols", "TLSv1.2");

    assertThat(ClusterStatus.isKafkaReady(config, 3, 10000)).isTrue();
  }


  @Test(timeout = 120000)
  public void isKafkaReadyWithSASLAndSSLUsingZK() throws Exception {
    Properties clientSecurityProps = kafka.getClientSecurityConfig();

    boolean zkReady = ClusterStatus.isZookeeperReady(this.kafka.getZookeeperConnectString(), 30000);
    if (!zkReady) {
      throw new RuntimeException(
          "Could not reach zookeeper " + this.kafka.getZookeeperConnectString());
    }
    Map<String, String> endpoints = ClusterStatus.getKafkaEndpointFromZookeeper(
        this.kafka.getZookeeperConnectString(),
        30000
    );

    String bootstrap_broker = endpoints.get("SASL_SSL");
    Map<String, String> config = Utils.propsToStringMap(clientSecurityProps);
    config.put(CommonClientConfigs.BOOTSTRAP_SERVERS_CONFIG, bootstrap_broker);

    // Set password and enabled protocol as the Utils.propsToStringMap just returns toString()
    // representations and these properties don't have a valid representation.
    Password trustStorePassword = (Password) clientSecurityProps.get("ssl.truststore.password");
    config.put("ssl.truststore.password", trustStorePassword.value());
    config.put("ssl.enabled.protocols", "TLSv1.2");

    assertThat(ClusterStatus.isKafkaReady(config, 3, 10000)).isTrue();
  }


}