Configuration
Schema Registry
Access Control
User permissions to Kafka cluster resources are defined by Schema actions.
Configuration
Kpow supports Confluent Schema Registry and AWS Glue Schema Registry.
Kpow connects to a Schema registry with environment variables.
Confluent Scheme Registry
Variable | Description |
---|---|
SCHEMA_REGISTRY_NAME | UI and logs friendly name for this Schema registry |
SCHEMA_REGISTRY_URL | The client connection URL for your registry |
SCHEMA_REGISTRY_AUTH | USER_INFO if basic authentication is configured |
SCHEMA_REGISTRY_USER | Username if basic authentication is configured |
SCHEMA_REGISTRY_PASSWORD | Password if basic authentication is configured |
SCHEMA_REGISTRY_RESOURCE_IDS | Optional, comma separated list of unique ids. Only specify when configuring multiple schema registries. |
SSL Configuration
The following environment variables can be used to configure Confluent schema registry connections with mutual-TLS:
- SCHEMA_REGISTRY_SSL_KEYSTORE_LOCATION
- SCHEMA_REGISTRY_SSL_KEYSTORE_PASSWORD
- SCHEMA_REGISTRY_SSL_KEY_PASSWORD
- SCHEMA_REGISTRY_SSL_KEYSTORE_TYPE
- SCHEMA_REGISTRY_SSL_KEYMANAGER_ALGORITHM
- SCHEMA_REGISTRY_SSL_TRUSTSTORE_LOCATION
- SCHEMA_REGISTRY_SSL_TRUSTSTORE_PASSWORD
- SCHEMA_REGISTRY_SSL_TRUSTSTORE_TYPE
- SCHEMA_REGISTRY_SSL_TRUSTMANAGER_ALGORITHM
- SCHEMA_REGISTRY_SSL_ENDPOINT_IDENTIFICATION_ALGORITHM
- SCHEMA_REGISTRY_SSL_PROVIDER
- SCHEMA_REGISTRY_SSL_CIPHER_SUITES
- SCHEMA_REGISTRY_SSL_PROTOCOL
- SCHEMA_REGISTRY_SSL_ENABLED_PROTOCOLS
- SCHEMA_REGISTRY_SSL_SECURE_RANDOM_IMPLEMENTATION
- SCHEMA_REGISTRY_SSL_KEYSTORE_KEY
- SCHEMA_REGISTRY_SSL_KEYSTORE_CERTIFICATE_CHAIN
- SCHEMA_REGISTRY_SSL_TRUSTSTORE_CERTIFICATES
- SCHEMA_REGISTRY_SSL_ENGINE_FACTORY_CLASS
AWS Glue Schema Registry
Variable | Description |
---|---|
SCHEMA_REGISTRY_NAME | UI and logs friendly name for this Schema registry |
SCHEMA_REGISTRY_ARN | The ARN of your AWS Glue Schema Registry |
SCHEMA_REGISTRY_REGION | The Region of your AWS Glue Schema Registry (default: us-east-1) |
Configuring Multiple Schema Registries
Kpow supports multiple Schema Registries associated to a single Kafka cluster.
To configure multiple Schema Registries, use the environment variable SCHEMA_REGISTRY_RESOURCE_IDS
to define a comma separated list of Schema Registries. Kpow uses the resource ID as a prefix in the environment variable.
Example configuration when configuring two Schema Registries:
SCHEMA_REGISTRY_RESOURCE_IDS=US1,EU2
US1_SCHEMA_REGISTRY_URL="https://us1.schema-registry.mycorp.org"
US1_SCHEMA_REGISTRY_AUTH="USER_INFO"
US1_SCHEMA_REGISTRY_USER=""
US1_SCHEMA_REGISTRY_PASSWORD=""
EU2_SCHEMA_REGISTRY_URL="https://eu2.schema-registry.mycorp.org"
EU2_SCHEMA_REGISTRY_AUTH="USER_INFO"
EU2_SCHEMA_REGISTRY_USER=""
EU2_SCHEMA_REGISTRY_PASSWORD=""
Multiple Schema Registries are navigable via the left hand or context menus.