diff --git a/scripts/check-env.js b/scripts/check-env.js index 701e48c02..e8c80a5da 100644 --- a/scripts/check-env.js +++ b/scripts/check-env.js @@ -23,12 +23,5 @@ if (!process.env.SKIP_DB_CHECK && !process.env.DATABASE_TYPE) { } if (process.env.CLOUD_MODE) { - checkMissing([ - 'CLOUD_URL', - 'KAFKA_BROKER', - 'KAFKA_URL', - 'REDIS_URL', - 'KAFKA_SASL_MECHANISM', - 'KAFKA_SSL', - ]); + checkMissing(['CLOUD_URL', 'KAFKA_BROKER', 'KAFKA_URL', 'REDIS_URL', 'KAFKA_SASL_MECHANISM']); } diff --git a/src/lib/kafka.ts b/src/lib/kafka.ts index 1ac28a5bb..99fc323ac 100644 --- a/src/lib/kafka.ts +++ b/src/lib/kafka.ts @@ -12,13 +12,14 @@ const enabled = Boolean(process.env.KAFKA_URL && process.env.KAFKA_BROKER); function getClient() { const { username, password } = new URL(process.env.KAFKA_URL); const brokers = process.env.KAFKA_BROKER.split(','); - const sslEnabled = process.env.KAFKA_SSL.toLowerCase() === 'true'; const mechanism = process.env.KAFKA_SASL_MECHANISM as 'plain' | 'scram-sha-256' | 'scram-sha-512'; const ssl: { ssl?: tls.ConnectionOptions | boolean; sasl?: SASLOptions } = username && password ? { - ssl: sslEnabled, + ssl: { + rejectUnauthorized: false, + }, sasl: { mechanism, username, diff --git a/yarn.lock b/yarn.lock index 03c840653..dd9b5d291 100644 --- a/yarn.lock +++ b/yarn.lock @@ -7962,9 +7962,9 @@ nanoclone@^0.2.1: integrity sha512-wynEP02LmIbLpcYw8uBKpcfF6dmg2vcpKqxeH5UcoKEYdExslsdUA4ugFauuaeYdTB76ez6gJW8XAZ6CgkXYxA== nanoid@^3.3.6, nanoid@^3.3.7: - version "3.3.7" - resolved "https://registry.yarnpkg.com/nanoid/-/nanoid-3.3.7.tgz#d0c301a691bc8d54efa0a2226ccf3fe2fd656bd8" - integrity sha512-eSRppjcPIatRIMC1U6UngP8XFcz8MQWGQdt1MTBQ7NaAmvXDfvNxbvWV3x2y6CdEUciCSsDHDQZbhYaB8QEo2g== + version "3.3.8" + resolved "https://registry.yarnpkg.com/nanoid/-/nanoid-3.3.8.tgz#b1be3030bee36aaff18bacb375e5cce521684baf" + integrity sha512-WNLf5Sd8oZxOm+TzppcYk8gVOgP+l58xNy58D0nbUnOxOWRWvlcCV4kUF7ltmI6PsrLl/BgKEyS4mqsGChFN0w== natural-compare@^1.4.0: version "1.4.0"