aboutsummaryrefslogtreecommitdiffstats
path: root/kubernetes/policy/templates/policy-kafka-user.yaml
diff options
context:
space:
mode:
authorSirisha_Manchikanti <sirisha.manchikanti@est.tech>2022-07-25 17:04:45 +0100
committerSirisha_Manchikanti <sirisha.manchikanti@est.tech>2022-07-25 18:09:31 +0100
commit73c5f00c93faa9238e8721fa4345c35ae256ccb1 (patch)
tree218a57933a2c78e5f8b1baff8381523cc3eea9f6 /kubernetes/policy/templates/policy-kafka-user.yaml
parentcce2287bfff11ada8507f28509e45656e2ab1094 (diff)
[POLICY] Add strimzi kafka config from helm charts
Add strimzi kafka user and topics for policy components in relevant helm charts. Issue-ID: POLICY-4133 Signed-off-by: Sirisha_Manchikanti <sirisha.manchikanti@est.tech> Change-Id: If0e1107c03acdfed83bfc359a45ad546d134bd30
Diffstat (limited to 'kubernetes/policy/templates/policy-kafka-user.yaml')
-rw-r--r--kubernetes/policy/templates/policy-kafka-user.yaml41
1 files changed, 41 insertions, 0 deletions
diff --git a/kubernetes/policy/templates/policy-kafka-user.yaml b/kubernetes/policy/templates/policy-kafka-user.yaml
new file mode 100644
index 0000000000..1bc7ab1d3a
--- /dev/null
+++ b/kubernetes/policy/templates/policy-kafka-user.yaml
@@ -0,0 +1,41 @@
+{{/*
+# Copyright © 2022 Nordix Foundation
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+*/}}
+{{- if .Values.config.useStrimziKafka }}
+apiVersion: kafka.strimzi.io/v1beta2
+kind: KafkaUser
+metadata:
+ name: {{ include "common.release" . }}-{{ .Values.global.policyKafkaUser }}
+ labels:
+ strimzi.io/cluster: {{ include "common.release" . }}-strimzi
+spec:
+ authentication:
+ type: scram-sha-512
+ authorization:
+ type: simple
+ acls:
+ - resource:
+ type: group
+ name: {{ .Values.config.acRuntimeTopic.consumer.groupId }}
+ operation: Read
+ - resource:
+ type: topic
+ name: {{ .Values.config.acRuntimeTopic.name }}
+ operation: Read
+ - resource:
+ type: topic
+ name: {{ .Values.config.acRuntimeTopic.name }}
+ operation: Write
+{{- end }}