8 results found
-
Support Kafka Single Sign On (OAuth, AAD, SSO)
As a developer / security engineer,
I want to be able to authenticate (i.e. Azure AD) and authorize (OAuth) my service users using OAuth2,
so that I can manage all users in a central place and don't need to worry about missing something during on- and off- boarding.57 votes -
Allow configuration of rate limits and quotas for Aiven for Apache Kafka
As a developer / SRE,
I want to configure quotas for producers and consumers,
so that I can make sure there are no rogue Apache Kafka clients exhausting network bandwidth available for the cluster.
In addition, I can throttle certain clients to simulate and test different network situations and application use-cases, i.e. consumer group auto-scaling.29 votes -
Add users and ACLs to Karapace
As a Service Owner
I want to enable Schema/REST ACLs
so that I can control who has write and read access to my data models
In addition TEST28 votes -
Support for public CA for SASL for Aiven for Apache Kafka
As developer,
I want to use public CA (i.e. Let's Encrypt),
so that I can connect to my Apache for Kafka service without installing any additional certificates.
In addition, I can trust publish authority issuing certificates instead of validating 3rd party certificates.22 votesYou can now configure Aiven for Apache Kafka to use a public certificate authority (Let’s Encrypt) for SASL authentication instead of a project-specific CA. This eliminates the need for clients to install and manage certificates when authenticating with username and password.When you enable this option, the connection details display the appropriate SASL port for your access route. Public CA support is available for all connection types, including PrivateLink.To enable Public CA, use the Aiven Console, Aiven CLI, API, or Terraform. For more information, see Enable public CA for SASL authentication.https://aiven.io/changelog/91c090ae-5e65-4c18-aa41-bec5b38c070d
-
Kafka tiered storage
I would like to have the option of using low cost storage to keep my historical Kafka data so that I can have recoverability and lower my costs.
17 votes -
Kafka fined grained ACLs
As an ops engineer,
I want to be able to declare fined grained ACLs
so that I avoid having to grant "admin" rights to users which only need "DeleteRecords" rights on specific topics.
The client uses Kafka Streams, which needs specific rights (https://docs.confluent.io/platform/current/streams/developer-guide/security.html#required-acl-setting-for-secure-ak-clusters) which are not covered by aiven predefined rights.
Currently, the "admin" is to broad for such access (I don't want the user to be able to create topics).8 votes -
Time lag estimation metric for Aiven for Apache Kafka
As a developer,
I want to know how much time will it take for my consumers to catch up when lacking behind,
so that I can programmatically scale my workloads for faster data processing.7 votesIn Limited Availability
-
Kafka rack awareness
Kafka consumer clients on Aiven for Kafka should be able to use client.rack configuration introduced in KIP-392
3 votesnow implemented for Bring Your Own Cloud customers
- Don't see your idea?