SASL/OAUTHBEARER Authentication is enabled by following properties. For more information, refer to Configure a Schema Registry client to use a standard OAuth authorization server and protocol.
metadata.broker.list=<bootstrap URL>
security.protocol=SASL_SSL
sasl.mechanism=OAUTHBEARER
sasl.oauthbearer.method=oidc
sasl.oauthbearer.client.id='<client ID>'
sasl.oauthbearer.client.secret='<Client Secret>'
sasl.oauthbearer.scope='<Requested Scope>'
sasl.oauthbearer.extensions="logicalCluster=<Cluster ID>,identityPoolId=<Pool ID>"
sasl.oauthbearer.token.endpoint.url=https://myidp.example.com/oauth2/default/v1/token
// Schema Registry specific settings [OAUTHBEARER]
bearer.auth.credentials.source=OAUTHBEARER
bearer.auth.issuer.endpoint.url=<openid-provider-url>
bearer.auth.client.id=<client-id>
bearer.auth.client.secret=<client-secret>
bearer.auth.scope=<scope>
bearer.auth.logical.cluster=<lsrc-resource-id>
bearer.auth.identity.pool.id=<identity-pool-id>
OR
// Schema Registry specific settings [OAUTHBEARER_INHERIT]
bearer.auth.credentials.source=SASL_OAUTHBEARER_INHERIT
bearer.auth.logical.cluster=<lsrc-resource-id>