Kafka Client Application
This section provides sample code snippets to configure Service Registry Kafka serializer/deserializer (SerDes) configuration properties to access the secure Service Registry server.
Apicurio Registry supports both OAuth and BASIC auth at the same time. a custom authentication handler has been implemented to use OAuth Client Credentials flow to support BASIC auth. In other words, the client can provide BASIC auth credentials, and the server-side custom handler will extract the username/password and then use OAuth Client Credentials flow against the Keycloak server to obtain an access token. Once that is done, everything else works the same as if the client had provided an OAuth bearer token to begin with.
Visit official document for detailed information on how to configure Kafka SerDes in your producer and consumer Java client applications.
Example Application
We're going to use this example application for demostration. Visit Apicurio Registry Example Applications repository for more Java example applications.
Kafka serializer/deserializer (SerDes) configuration properties
Based on the authentication mechanism you're using for Service Registry, you need to update the example application code when creating Kaka Producer and Consumer object as the snippets below.
Basic Authentication configuration
props.putIfAbsent(SerdeConfig.AUTH_USERNAME, "test-kafka-registry");
props.putIfAbsent(SerdeConfig.AUTH_PASSWORD, "93b77291-ccbb-4fc1-9264-562e8c421ffd");OAuth configuration
props.putIfAbsent(SerdeConfig.AUTH_CLIENT_ID, "test-kafka-registry");
props.putIfAbsent(SerdeConfig.AUTH_CLIENT_SECRET, "93b77291-ccbb-4fc1-9264-562e8c421ffd");
props.putIfAbsent(SerdeConfig.AUTH_TOKEN_ENDPOINT, "https://keycloak-service-registry.apps.cluster-qmkwt.qmkwt.sandbox19.opentlc.com/auth/realms/registry/protocol/openid-connect/token");Running Example Application
If the Kafka serializer/deserializer (SerDes) configuration properties are correct, you should be able to see application output similar to this when you run the application. This means the client application can connect and authenticate to Service Registry successfully.
Starting example SimpleAvroExample
SLF4J: Failed to load class "org.slf4j.impl.StaticLoggerBinder".
SLF4J: Defaulting to no-operation (NOP) logger implementation
SLF4J: See http://www.slf4j.org/codes.html#StaticLoggerBinder for further details.
Producing (5) messages.
Messages successfully produced.
Closing the producer.
Creating the consumer.
Subscribing to topic SimpleAvroExample
Consuming (5) messages.
No messages waiting...
No messages waiting...
No messages waiting...
Consumed a message: Hello (0)! @ Sun Oct 30 13:40:42 ICT 2022
Consumed a message: Hello (1)! @ Sun Oct 30 13:40:44 ICT 2022
Consumed a message: Hello (2)! @ Sun Oct 30 13:40:44 ICT 2022
Consumed a message: Hello (3)! @ Sun Oct 30 13:40:44 ICT 2022
Consumed a message: Hello (4)! @ Sun Oct 30 13:40:44 ICT 2022
Done (success).
Process finished with exit code 0Last updated