From ee798c3ba07485803adb3a4127bba5ea83a390ca Mon Sep 17 00:00:00 2001
From: Yuriy Natarov <acuion@yandex-team.ru>
Date: Tue, 16 May 2023 23:27:03 +0200
Subject: [PATCH] Do not override SASL mechanism for user REST proxy

---
 karapace/kafka_rest_apis/__init__.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/karapace/kafka_rest_apis/__init__.py b/karapace/kafka_rest_apis/__init__.py
index 2e44065b9..ae4dcef31 100644
--- a/karapace/kafka_rest_apis/__init__.py
+++ b/karapace/kafka_rest_apis/__init__.py
@@ -284,7 +284,8 @@ async def get_user_proxy(self, request: HTTPRequest) -> "UserRestProxy":
                         config["security_protocol"] = (
                             "SASL_SSL" if config["security_protocol"] in ("SSL", "SASL_SSL") else "SASL_PLAINTEXT"
                         )
-                        config["sasl_mechanism"] = "PLAIN"
+                        if config["sasl_mechanism"] is None:
+                            config["sasl_mechanism"] = "PLAIN"
                         config["sasl_plain_username"] = auth.login
                         config["sasl_plain_password"] = auth.password
                         self.proxies[key] = UserRestProxy(config, self.kafka_timeout, self.serializer)