Listens on https port 7143 and will stream back whatever is published to the events topic in Kafka.
- docker compose
- jwt-cli
Generates JWT tokens from the command line.
brew install mike-engel/jwt-cli/jwt-cliTo start the Docker Compose stack defined in the compose.yaml file, use:
docker compose up -dGenerate JWT token valid for 30 seconds and signed by local private key.
export JWT_TOKEN=$(jwt encode \
--alg "RS256" \
--kid "example" \
--iss "https://auth.example.com" \
--aud "https://api.example.com" \
--sub "example" \
--exp=+30s \
--no-iat \
--payload "scope=proxy:stream" \
--secret @private.pem)Open a text/event-stream from the sse endpoint in a terminal.
curl -v -N --http2 --cacert test-ca.crt -H "Accept:text/event-stream" "https://localhost:7143/events?access_token=${JWT_TOKEN}"In a new terminal send a text payload from the kafkacat producer client.
echo '{ "id": 1, "name": "Hello World!"}' | docker compose -p zilla-sse-kafka-fanout exec -T kafkacat \
kafkacat -P -b kafka.examples.dev:29092 -t events -k "1"The text payload will be the data: of the sse message seen in the text/event-stream terminal session.
Note that only the latest messages with distinct keys are guaranteed to be retained by a compacted Kafka topic, so use different values for -k above to retain more than one message in the events topic.
About 20 seconds after the JWT token was generated, when it is due to expire in 10 seconds, a challenge event is sent to the client.
event:challenge
data:{"method":"POST","headers":{"content-type":"application/x-challenge-response"}}
When a client receives the challenge event, the payload indicates the method and headers to be included in the challenge-response HTTP request, along with an updated JWT token via the authorization header.
Note that if the client does not respond to the challenge event with an updated JWT token in time, then the SSE stream ends, ensuring that only authorized clients are allowed access.
* Connection #0 to host localhost left intact
Browse to https://localhost:7143/index.html and make sure to visit the localhost site and trust the localhost certificate.
Click the Go button to attach the browser SSE event source to Kafka via Zilla.
All non-compacted messages with distinct keys in the events Kafka topic are replayed to the browser.
Open the browser developer tools console to see additional logging, such as the open event.
Additional messages produced to the events Kafka topic then arrive at the browser live.
Simulate connection loss by stopping the zilla service in the docker stack.
docker compose stop zillaThis causes errors to be logged in the browser console during repeated attempts to automatically reconnect.
Simulate connection recovery by starting the zilla service again.
docker compose start zillaAny messages produced to the events Kafka topic while the browser was attempting to reconnect are now delivered immediately.
Additional messages produced to the events Kafka topic then arrive at the browser live.
To remove any resources created by the Docker Compose stack, use:
docker compose down