The Kroxylicious project is very pleased to announce the release of Kroxylicious 0.12.0. See the Changelog for a list of changes and summary of Deprecations, Changes and Removals.
The main change in this release is Apache Kafka 4.0.0 compatibility. The proxy will now relay Kafka 4.0 specific versions of the Kafka RPC and your filters can intercept them.
If you are using TLS client authentication (in other words , mutual TLS) between Kafka Clients and the Proxy, the Proxy will now default to requiring that client present a certificate - REQUIRE
mode - rather than NONE
(as was previously the case). If the client does not
present a certificate that is trusted by the trust-anchor, the connection will fail to be established. The motivation for this change is adhering to the “Secure by Default” philosophy.
Please let us know, through Slack, GitHub or even bsky), if you find the project interesting or helpful and especially if you have deployed it in production.