I have spring boot services using spring-boot-kafka (similar config to https://www.baeldung.com/spring-boot-kafka-ssl ). I have short lived certificates (7 days) accesible from a shared network file system to all my services that are daily updated, so the keystore file is overwritten with the new cert.
Would the kafka client connection "reload" the certificates in the truststore / keystore locations automatically after detecting the current certificate is not valid anymore? If not, how can I refresh my spring kafka client connections so it uses the more up to date certs in the keystore / truststore without restarting my apps or losing messages?
I'm using spring boot 3.0.0 with org.springframework.kafka:spring-kafka:3.0.0 (org.apache.kafka:kafka-clients:3.3.1).
This question addresses partially the problem but not from the spring kafka perspective
The brokers seem to be doing it already.
