apucher opened a new pull request #6415: URL: https://github.com/apache/incubator-pinot/pull/6415
## Description We add support for TLS-secured client-broker connections, similar to the secure client-controller connection already implemented. Comprehensive example with modified QuickStart for illustration: https://github.com/apache/incubator-pinot/pull/6413 ## Upgrade Notes Does this PR prevent a zero down-time upgrade? (Assume upgrade order: Controller, Broker, Server, Minion) **No** Does this PR fix a zero-downtime upgrade introduced earlier? **No** Does this PR otherwise need attention when creating release notes? **Yes** ## Release Notes Add support for TLS-secured client-broker connections. Broker TLS can be configured using the following new properties: - **pinot.broker.client.protocol** (http **OR** https) - **pinot.broker.client.tls.keystore.path** - **pinot.broker.client.tls.keystore.password** - **pinot.broker.client.tls.truststore.path** - **pinot.broker.client.tls.truststore.password** - **pinot.broker.client.tls.requires_client_auth** Furthermore, to enable controller-broker relay requests via https, the controller can be configured to use a specific protocol via: - **controller.broker.protocol** ## Documentation https://github.com/pinot-contrib/pinot-docs/pull/18 ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: commits-unsubscr...@pinot.apache.org For additional commands, e-mail: commits-h...@pinot.apache.org
