| # |
| # Licensed to the Apache Software Foundation (ASF) under one |
| # or more contributor license agreements. See the NOTICE file |
| # distributed with this work for additional information |
| # regarding copyright ownership. The ASF licenses this file |
| # to you under the Apache License, Version 2.0 (the |
| # "License"); you may not use this file except in compliance |
| # with the License. You may obtain a copy of the License at |
| # |
| # http://www.apache.org/licenses/LICENSE-2.0 |
| # |
| # Unless required by applicable law or agreed to in writing, |
| # software distributed under the License is distributed on an |
| # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
| # KIND, either express or implied. See the License for the |
| # specific language governing permissions and limitations |
| # under the License. |
| # |
| |
| ### --- Web Socket proxy settings --- ### |
| |
| # Configuration Store connection string |
| configurationStoreServers= |
| |
| # Zookeeper session timeout in milliseconds |
| zooKeeperSessionTimeoutMillis=30000 |
| |
| # Pulsar cluster url to connect to broker (optional if configurationStoreServers present) |
| serviceUrl= |
| serviceUrlTls= |
| brokerServiceUrl= |
| brokerServiceUrlTls= |
| |
| # Port to use to server HTTP request |
| webServicePort=8080 |
| # Port to use to server HTTPS request |
| webServicePortTls=8443 |
| |
| # Path for the file used to determine the rotation status for the proxy-instance when responding |
| # to service discovery health checks |
| statusFilePath= |
| |
| # Hostname or IP address the service binds on, default is 0.0.0.0. |
| bindAddress=0.0.0.0 |
| |
| # Name of the pulsar cluster to connect to |
| clusterName= |
| |
| # Number of IO threads in Pulsar Client used in WebSocket proxy |
| numIoThreads=8 |
| |
| # Number of connections per Broker in Pulsar Client used in WebSocket proxy |
| connectionsPerBroker=8 |
| |
| ### --- Authentication --- ### |
| |
| # Enable authentication |
| authenticationEnabled=false |
| |
| # Autentication provider name list, which is comma separated list of class names |
| authenticationProviders= |
| |
| # Enforce authorization |
| authorizationEnabled=false |
| |
| # Authorization provider fully qualified class-name |
| authorizationProvider=org.apache.pulsar.broker.authorization.PulsarAuthorizationProvider |
| |
| # Allow wildcard matching in authorization |
| # (wildcard matching only applicable if wildcard-char: |
| # * presents at first or last position eg: *.pulsar.service, pulsar.service.*) |
| authorizationAllowWildcardsMatching=false |
| |
| # Role names that are treated as "super-user", meaning they will be able to do all admin |
| # operations and publish/consume from all topics |
| superUserRoles= |
| |
| # Authentication settings of the proxy itself. Used to connect to brokers |
| brokerClientAuthenticationPlugin= |
| brokerClientAuthenticationParameters= |
| brokerClientTrustCertsFilePath= |
| |
| # When this parameter is not empty, unauthenticated users perform as anonymousUserRole |
| anonymousUserRole= |
| |
| ### --- TLS --- ### |
| |
| # Enable TLS |
| tlsEnabled=false |
| |
| # Accept untrusted TLS certificate from client |
| tlsAllowInsecureConnection=false |
| |
| # Path for the TLS certificate file |
| tlsCertificateFilePath= |
| |
| # Path for the TLS private key file |
| tlsKeyFilePath= |
| |
| # Path for the trusted TLS certificate file |
| tlsTrustCertsFilePath= |
| |
| # Specify whether Client certificates are required for TLS |
| # Reject the Connection if the Client Certificate is not trusted. |
| tlsRequireTrustedClientCertOnConnect=false |
| |
| |
| ### --- Deprecated config variables --- ### |
| |
| # Deprecated. Use configurationStoreServers |
| globalZookeeperServers= |