StreamNative Platform and StreamNatvie Control Center consist of various components, such as Pulsar broker, BookKeeper, Pulsar Manager, and so on. By default, there is no encryption, authentication, or authorization configured. All transferred data is exposed to everyone and any clients can communicate with the StreamNative Platform via plain text service URL. It is important to ensure the service is accessed by the trusted client only. It is recommended that you enable security for the StreamNative Platform when you deploy it to your production environment.
Currently, StreamNative Platform components support TLS and JWT for encryption and authentication. Before configuring the encryption, authentication, and authorization end-to-end across the StreamNative Platform components, make sure you have a cluster that can run without the security configured. For how to set up a non-secured cluster, see here.
After reading this guide, you can learn more details as below.