Strimzi
OAuth Client Authentication with mTLS from an external client to the in-between reverse proxy #8379
Unanswered
erigoldsmith
asked this question in
Q&A
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Hi Everyone,
I was wondering whether it might be possible to support a scenario where you use OAuth authentication in Strimzi for an external client, but you also want to have mTLS in the stretch between the external client and the reverse proxy where you terminate external (m)TLS.
As far as I got from Strimzi documentation, currently mTLS and OAuth are basically mutually exclusive, so I was considering whether the current client SDKs available for Kafka would potentially allow customizing things in a way that you actually use OAuth to authenticate to brokers but you are anyhow able to have mTLS just on the external sub-path from the client to the reverse proxy.
Thanks for the feedback,
Best regards,
Goldsmith
Beta Was this translation helpful? Give feedback.
All reactions