Enhancement
Critical
Major
Detail
Detail
Currently, the following kafka configuration properties are passed as plain text to the application:
- ssl.key.password
- ssl.keystore.password
- ssl.truststore.password
These properties are defined in the Top-Logic Framework's com.top_logic.kafka.services.common.CommonClientConfig interface.
=== Requirement Enforce encryption of the above properties by adding the @Encrypted annotation to the respective configuration interface methods in com.top_logic.kafka.services.common.CommonClientConfig.
=== Code Migration Applications using Top-Logic native kafka functionality have to change the above kafka configuration properties to encrypted values using either com.top_logic.basic.ConfigurationEncryption.encrypt(String) method or the EncodeConfigurationValues.jsp maintenance page from within a running application.
For easy migration, the existing configuration values can be prefixed with unencrypted: to temporarily load the plaintext values.
Test
No test.