dapr
/
components-contrib
mirror of https://github.com/dapr/components-contrib.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

rollback code to set config.net.tls.enable=true when auth is required and tls is not required 

Signed-off-by: Sky Ao <aoxiaojian@gmail.com>
This commit is contained in:
Sky Ao 2022-10-13 12:02:05 +00:00
parent 3427cc1c59
commit 5cc923bcc4
1 changed files with 5 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
internal/component/kafka/auth.go
View File

@ -54,15 +54,13 @@ func updateTLSConfig(config *sarama.Config, metadata *kafkaMetadata) error {
config.Net.TLS.Enable = false
return nil
}
if !metadata.TLSSkipVerify && metadata.TLSCaCert == "" {
config.Net.TLS.Enable = false
return nil
}
//nolint:gosec
config.Net.TLS.Config = &tls.Config{InsecureSkipVerify: metadata.TLSSkipVerify, MinVersion: tls.VersionTLS12}
config.Net.TLS.Enable = true
if !metadata.TLSSkipVerify && metadata.TLSCaCert == "" {
return nil
}
//nolint:gosec
config.Net.TLS.Config = &tls.Config{InsecureSkipVerify: metadata.TLSSkipVerify, MinVersion: tls.VersionTLS12}
if metadata.TLSCaCert != "" {
caCertPool := x509.NewCertPool()
if ok := caCertPool.AppendCertsFromPEM([]byte(metadata.TLSCaCert)); !ok {