3.2. Secure Web Terminal Proxy Kafka FAQ#

3.2.1. How To Utilize Kafka To Store User Actions#

Note

You can instruct the system to dump the interactions of users to kafka.

You can either use SSL or SSL/Kerberos to connect the swtp system to a kafka instance

3.2.2. Kafka Logging Setup#

See config for more details

Note

Here are the sections to configure kafka change to your sys defaults.

 1  {kafka_client, sswtp_cli_client}.
 2
 3  {kafka_topic, <<"sswtp_cli_topic">>}.
 4
 5  {kafka_endpoints, [{"192.168.1.20",9092}]}.
 6
 7  {kafka_partition, 0}.
 8
 9  {kafka_client_opts, [{max_retires, 10},{retry_backoff_ms, 1000},{auto_start_producers, true},{reconnect_cool_down_seconds, 100},
10                       {ssl, [{cacertfile, /path/to/CaCert}, {certfile, /path/to/Cert}, {keyfile, /path/to/Key}]},
11                       {sasl, {callback, brod_gssapi, {gssapi, KeyTab, Principal}}]}.

Warning

For the kafka ssl ca-certfile,certificate,keyfile should all be mounted via the -v docker flags

Warning

If you are not using SSL/Kerb then remove the ssl section from the configuration