The Kroxylicious project is very pleased to announce the release of Kroxylicious 0.5.0. See the Changelog for a list of changes and summary of Deprecations, Changes and Removals.
This release was focused on refining Record Encryption to be ready for experimentation in secure environments, adding:
quay.io/kroxylicious/kroxylicious
also containing the supported filtersThe protocol for immutable encrypted data written to the broker is now aligned with our initial design. We guarantee data encrypted with version 0.5.0 of the Filter will be decryptable by all future versions of the Record Encryption Filter forever (assuming the keys stored in the KMS remain available for decryption).
Until now we have used the term Envelope Encryption when describing the Filter. Going forward we will use the name Record Encryption to better describe the granularity that encryption is happening at. Encryption is done per record. Envelope Encryption is how we encrypt those records. Record Encryption is how we implement Encryption-At-Rest.
lowestTargetBrokerId
configuration for Port-per-broker Virtual Cluster expositionYou’ll find binaries attached to the GitHub release, and available through Maven Central.
Docker images are hosted at quay.io/kroxylicious/kroxylicious
We are eager for any feedback, you can create an issue in GitHub if you have any problems or want a feature added.