红帽全球峰会此内容没有您所选择的语言版本。
Chapter 7. Migrating Apicurio Registry client applications
Review every application that integrates with Apicurio Registry 2.6 to verify compatibility with the v3 REST API, SDKs, and client libraries. Update dependency coordinates, reconfigure endpoints, and adjust automation to account for the new data model.
Before you begin
Ensure you have the following:
- Existing Apicurio Registry 2.6 applications that rely on the v2 REST API or legacy client libraries.
- Access to the source code or deployment configuration for each application you must update.
- Understanding of your client application types (Kafka SerDes, REST API clients, SDK-based applications).
- Required dependencies for running migration scripts. See Installing dependencies.
Apicurio Registry 3.x maintains backward compatibility with v2 client libraries and SerDes. You can continue using v2 clients with a v3 registry during your migration period, allowing gradual client updates.
Backward compatibility
Apicurio Registry 3.x provides backward compatibility for existing v2 clients:
-
v2 REST API remains available at
/apis/registry/v2 - v2 SerDes libraries continue to work with v3 registry
- v3 SerDes can consumes v2 client Kafka messages (with proper configuration)
- No immediate client updates required during migration
This approach lets you:
- Migrate the registry to v3 first.
- Test with existing v2 clients.
- Gradually update clients to v3 libraries over time.
7.1. Choosing a migration strategy
Gradual migration
Migrate registry first, then update clients incrementally:
- Deploy Apicurio Registry 3.x
- Verify v2 clients continue working
- Update high-priority clients to v3 SerDes or SDKs
- Gradually migrate remaining clients
- Deprecate v2 API access once all clients updated
Benefits:
- Lower risk: clients continue working during migration
- Flexible timeline for client updates
- Easier rollback if issues occur
Big-bang migration
Update all clients and registry simultaneously:
- Prepare all client updates in advance
- Deploy Apicurio Registry 3.x
- Deploy updated client applications
- Verify all integrations work
Benefits:
- Clean cutover to v3
- No mixed v2/v3 client environment
Risks:
- Higher complexity and coordination required
- More difficult to troubleshoot if issues arise
Migrating Kafka SerDes applications
Kafka SerDes applications require careful migration planning.
Maven dependency changes
Update SerDes library dependencies from v2 to v3:
Registry 2.x dependencies:
<dependency>
<groupId>io.apicurio</groupId>
<artifactId>apicurio-registry-serdes-avro-serde</artifactId>
<version>2.6.13.Final</version>
</dependency>
<dependency>
<groupId>io.apicurio</groupId>
<artifactId>apicurio-registry-serdes-avro-serde</artifactId>
<version>2.6.13.Final</version>
</dependency>Registry 3.x dependencies:
<dependency>
<groupId>io.apicurio</groupId>
<artifactId>apicurio-registry-avro-serde-kafka</artifactId>
<version>3.1.2</version>
</dependency>
<dependency>
<groupId>io.apicurio</groupId>
<artifactId>apicurio-registry-avro-serde-kafka</artifactId>
<version>3.1.2</version>
</dependency>
Artifact IDs changed in v3. The v2 artifact ID was apicurio-registry-serdes-avro-serde, while v3 uses apicurio-registry-avro-serde-kafka.
Configuration changes
Update SerDes configuration properties for v3:
Registry 2.x SerDes configuration:
Registry 3.x SerDes configuration:
Key configuration differences:
| Property | Registry 2.x | Registry 3.x |
|---|---|---|
| OAuth2 endpoint |
|
|
| ID Handler |
|
|
| Confluent ID handler |
| Removed |
| Content ID usage |
|
|
The default ID option changed from globalId to contentId in v3. Both v2 and v3 SerDes can read messages using either ID type, ensuring compatibility during migration. If your v2 applications explicitly set USE_ID=contentId, you can remove this configuration in v3 as it is now the default.
TLS and HTTPS configuration
TLS configuration differs between v2 and v3 SerDes clients. Update your configuration as follows:
Registry 2.x (system properties):
// v2 SerDes clients use system properties for TLS configuration
System.setProperty("javax.net.ssl.trustStore", "/path/to/truststore.jks");
System.setProperty("javax.net.ssl.trustStorePassword", "password");
// v2 SerDes clients use system properties for TLS configuration
System.setProperty("javax.net.ssl.trustStore", "/path/to/truststore.jks");
System.setProperty("javax.net.ssl.trustStorePassword", "password");Registry 3.x (SerdeConfig properties):
v3 SerDes requires both SerdeConfig TLS properties (for Registry SDK connections) and system properties (for OAuth2 Keycloak connections). This is different from v2, which only used system properties.
Message format compatibility
With proper configuration, Apicurio Registry 3.x SerDes reads messages serialized by v2 SerDes:
- v3 consumers read messages produced by v2 producers
- v2 consumers read messages produced by v3 producers
- Mixed environment (v2 and v3 clients) is fully supported
This helps avoid data loss during migration.
Migrating REST API clients
For applications using Apicurio Registry REST API directly (not Kafka SerDes):
SDK migration
Update to v3 Kiota-generated SDKs:
Registry 2.x SDK:
<dependency>
<groupId>io.apicurio</groupId>
<artifactId>apicurio-registry-client</artifactId>
<version>2.6.13.Final</version>
</dependency>
<dependency>
<groupId>io.apicurio</groupId>
<artifactId>apicurio-registry-client</artifactId>
<version>2.6.13.Final</version>
</dependency>Registry 3.x SDK:
<dependency>
<groupId>io.apicurio</groupId>
<artifactId>apicurio-registry-java-sdk</artifactId>
<version>3.1.2</version>
</dependency>
<dependency>
<groupId>io.apicurio</groupId>
<artifactId>apicurio-registry-java-sdk</artifactId>
<version>3.1.2</version>
</dependency>TLS and HTTPS configuration
TLS configuration differs between v2 and v3 clients. Update your configuration as follows:
Registry 2.x (system properties):
// v2 clients use system properties
System.setProperty("javax.net.ssl.trustStore", "/path/to/truststore.jks");
System.setProperty("javax.net.ssl.trustStorePassword", "password");
// v2 clients use system properties
System.setProperty("javax.net.ssl.trustStore", "/path/to/truststore.jks");
System.setProperty("javax.net.ssl.trustStorePassword", "password");Registry 3.x (RegistryClientOptions):
Migrating client authentication
OAuth2/OIDC configuration changes for REST API client applications:
Registry 2.x client authentication:
Registry 3.x SDK authentication:
Key authentication differences:
| Aspect | Registry 2.x | Registry 3.x |
|---|---|---|
| Configuration approach |
Separate |
Fluent builder with |
| OAuth2 endpoint | Full auth server URL with realm path | Full OIDC token endpoint URL |
| Factory method |
|
|
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}