From 33d2a03c6597741b40d1ed36ccc5cfaa42b9efcd Mon Sep 17 00:00:00 2001
From: Christian Lefebvre <christian.lefebvre@worldline.com>
Date: Tue, 31 Oct 2023 16:44:37 +0100
Subject: [PATCH] declare sasl.mechanism.controller.protocol when scram or
 scram256

---
 roles/variables/vars/main.yml | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/roles/variables/vars/main.yml b/roles/variables/vars/main.yml
index d09e4cd952..5346e2e9f7 100644
--- a/roles/variables/vars/main.yml
+++ b/roles/variables/vars/main.yml
@@ -166,6 +166,14 @@ kafka_controller_properties:
     enabled: "{{kafka_controller_sasl_protocol=='kerberos'}}"
     properties:
       sasl.mechanism.controller.protocol: GSSAPI
+  kraft_sasl_scram:
+    enabled: "{{kafka_controller_sasl_protocol=='scram'}}"
+    properties:
+      sasl.mechanism.controller.protocol: SCRAM-SHA-512
+  kraft_sasl_scram256:
+    enabled: "{{kafka_controller_sasl_protocol=='scram256'}}"
+    properties:
+      sasl.mechanism.controller.protocol: SCRAM-SHA-256
   ssl:
     enabled: "{{ kafka_controller_listeners | confluent.platform.ssl_required(kafka_controller_ssl_enabled) }}"
     properties: