spetz opened a new pull request, #3040: URL: https://github.com/apache/iggy/pull/3040
feat(security): encrypt user headers alongside message payload Server-side encryption protected message payloads and state log entries but left user-defined headers in plaintext on disk. Client-side encryption in the Rust and C# SDKs had the same gap, encrypting only the payload. Both server and all SDKs with client-side encryption now encrypt and decrypt user headers using the same encryptor as the payload. The integration test verifies no plaintext headers appear on disk when encryption is enabled, and a new unit test covers the client-side round-trip. The C# SDK adds TryMapHeaders for graceful handling of encrypted header bytes during deserialization. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
