| # |
| # Licensed to the Apache Software Foundation (ASF) under one |
| # or more contributor license agreements. See the NOTICE file |
| # distributed with this work for additional information |
| # regarding copyright ownership. The ASF licenses this file |
| # to you under the Apache License, Version 2.0 (the |
| # "License"); you may not use this file except in compliance |
| # with the License. You may obtain a copy of the License at |
| # |
| # http://www.apache.org/licenses/LICENSE-2.0 |
| # |
| # Unless required by applicable law or agreed to in writing, |
| # software distributed under the License is distributed on an |
| # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
| # KIND, either express or implied. See the License for the |
| # specific language governing permissions and limitations |
| # under the License. |
| # |
| |
| # Zookeeper quorum connection string (comma-separated) |
| zookeeperServers= |
| |
| # Configuration Store connection string (comma-separated) |
| configurationStoreServers= |
| |
| # ZooKeeper session timeout |
| zookeeperSessionTimeoutMs=30000 |
| |
| # ZooKeeper cache expiry time in seconds |
| zooKeeperCacheExpirySeconds=300 |
| |
| # Port to use to server binary-proto request |
| servicePort=6650 |
| |
| # Port to use to server binary-proto-tls request |
| servicePortTls= |
| |
| # Port that discovery service listen on |
| webServicePort=8080 |
| |
| # Port to use to server HTTPS request |
| webServicePortTls= |
| |
| # Control whether to bind directly on localhost rather than on normal hostname |
| bindOnLocalhost=false |
| |
| ### --- Authentication --- ### |
| |
| # Enable authentication |
| authenticationEnabled=false |
| |
| # Authentication provider name list, which is comma separated list of class names (comma-separated) |
| authenticationProviders= |
| |
| # Enforce authorization |
| authorizationEnabled=false |
| |
| # Authorization provider name list, which is comma separated list of class names |
| authorizationProviders=org.apache.pulsar.broker.authorization.PulsarAuthorizationProvider |
| |
| # Role names that are treated as "super-user", meaning they will be able to do all admin |
| # operations and publish/consume from all topics (comma-separated) |
| superUserRoles= |
| |
| # Allow wildcard matching in authorization |
| # (wildcard matching only applicable if wildcard-char: |
| # * presents at first or last position eg: *.pulsar.service, pulsar.service.*) |
| authorizationAllowWildcardsMatching=false |
| |
| ##### --- TLS --- ##### |
| # Deprecated - Use servicePortTls and webServicePortTls instead |
| tlsEnabled=false |
| |
| # Path for the TLS certificate file |
| tlsCertificateFilePath= |
| |
| # Path for the TLS private key file |
| tlsKeyFilePath= |
| |
| # Specify whether Client certificates are required for TLS |
| # Reject the Connection if the Client Certificate is not trusted. |
| tlsRequireTrustedClientCertOnConnect=false |
| |
| # Tls cert refresh duration in seconds (set 0 to check on every new connection) |
| tlsCertRefreshCheckDurationSec=300 |
| |
| ### --- Deprecated config variables --- ### |
| |
| # Deprecated. Use configurationStoreServers |
| globalZookeeperServers= |