Class: Kafka::SaslAuthenticator
- Inherits:
-
Object
- Object
- Kafka::SaslAuthenticator
- Defined in:
- lib/kafka/sasl_authenticator.rb
Instance Method Summary collapse
- #authenticate!(connection) ⇒ Object
- #enabled? ⇒ Boolean
-
#initialize(logger:, sasl_gssapi_principal:, sasl_gssapi_keytab:, sasl_plain_authzid:, sasl_plain_username:, sasl_plain_password:, sasl_scram_username:, sasl_scram_password:, sasl_scram_mechanism:) ⇒ SaslAuthenticator
constructor
A new instance of SaslAuthenticator.
Constructor Details
#initialize(logger:, sasl_gssapi_principal:, sasl_gssapi_keytab:, sasl_plain_authzid:, sasl_plain_username:, sasl_plain_password:, sasl_scram_username:, sasl_scram_password:, sasl_scram_mechanism:) ⇒ SaslAuthenticator
Returns a new instance of SaslAuthenticator.
9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 |
# File 'lib/kafka/sasl_authenticator.rb', line 9 def initialize(logger:, sasl_gssapi_principal:, sasl_gssapi_keytab:, sasl_plain_authzid:, sasl_plain_username:, sasl_plain_password:, sasl_scram_username:, sasl_scram_password:, sasl_scram_mechanism:) @logger = logger @plain = Sasl::Plain.new( authzid: sasl_plain_authzid, username: sasl_plain_username, password: sasl_plain_password, logger: @logger, ) @gssapi = Sasl::Gssapi.new( principal: sasl_gssapi_principal, keytab: sasl_gssapi_keytab, logger: @logger, ) @scram = Sasl::Scram.new( username: sasl_scram_username, password: sasl_scram_password, mechanism: sasl_scram_mechanism, logger: @logger, ) @mechanism = [@gssapi, @plain, @scram].find(&:configured?) end |
Instance Method Details
#authenticate!(connection) ⇒ Object
41 42 43 44 45 46 47 48 49 50 51 52 |
# File 'lib/kafka/sasl_authenticator.rb', line 41 def authenticate!(connection) return unless enabled? ident = @mechanism.ident response = connection.send_request(Kafka::Protocol::SaslHandshakeRequest.new(ident)) unless response.error_code == 0 && response.enabled_mechanisms.include?(ident) raise Kafka::Error, "#{ident} is not supported." end @mechanism.authenticate!(connection.to_s, connection.encoder, connection.decoder) end |
#enabled? ⇒ Boolean
37 38 39 |
# File 'lib/kafka/sasl_authenticator.rb', line 37 def enabled? !@mechanism.nil? end |