Hi everyone I have just created KIP-127 to introduce custom JAAS configuration for the SSL channel:
*https://cwiki.apache.org/confluence/display/KAFKA/KIP-127%3A+Pluggable+JAAS+LoginModule+configuration+for+SSL <https://cwiki.apache.org/confluence/display/KAFKA/KIP-127%3A+Pluggable+JAAS+LoginModule+configuration+for+SSL>* The idea here is to be able to do custom authentication based off of a user's X509 credentials in addition to the SSL handshake. I have created a rough draft of a commit to give an idea of what my plan is which matches the KIP: https://github.com/cshannon/kafka/tree/KAFKA-4784 It still needs some work (needs more tests for example) but I wanted to get some feedback before I went any farther on this and do a pull request. Thanks, Chris
