diff options
author | Sirisha_Manchikanti <sirisha.manchikanti@est.tech> | 2022-07-25 17:04:45 +0100 |
---|---|---|
committer | Sirisha_Manchikanti <sirisha.manchikanti@est.tech> | 2022-07-25 18:09:31 +0100 |
commit | 73c5f00c93faa9238e8721fa4345c35ae256ccb1 (patch) | |
tree | 218a57933a2c78e5f8b1baff8381523cc3eea9f6 /kubernetes/policy/templates/policy-kafka-user.yaml | |
parent | cce2287bfff11ada8507f28509e45656e2ab1094 (diff) |
[POLICY] Add strimzi kafka config from helm charts
Add strimzi kafka user and topics for policy components in
relevant helm charts.
Issue-ID: POLICY-4133
Signed-off-by: Sirisha_Manchikanti <sirisha.manchikanti@est.tech>
Change-Id: If0e1107c03acdfed83bfc359a45ad546d134bd30
Diffstat (limited to 'kubernetes/policy/templates/policy-kafka-user.yaml')
-rw-r--r-- | kubernetes/policy/templates/policy-kafka-user.yaml | 41 |
1 files changed, 41 insertions, 0 deletions
diff --git a/kubernetes/policy/templates/policy-kafka-user.yaml b/kubernetes/policy/templates/policy-kafka-user.yaml new file mode 100644 index 0000000000..1bc7ab1d3a --- /dev/null +++ b/kubernetes/policy/templates/policy-kafka-user.yaml @@ -0,0 +1,41 @@ +{{/* +# Copyright © 2022 Nordix Foundation +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +*/}} +{{- if .Values.config.useStrimziKafka }} +apiVersion: kafka.strimzi.io/v1beta2 +kind: KafkaUser +metadata: + name: {{ include "common.release" . }}-{{ .Values.global.policyKafkaUser }} + labels: + strimzi.io/cluster: {{ include "common.release" . }}-strimzi +spec: + authentication: + type: scram-sha-512 + authorization: + type: simple + acls: + - resource: + type: group + name: {{ .Values.config.acRuntimeTopic.consumer.groupId }} + operation: Read + - resource: + type: topic + name: {{ .Values.config.acRuntimeTopic.name }} + operation: Read + - resource: + type: topic + name: {{ .Values.config.acRuntimeTopic.name }} + operation: Write +{{- end }} |