#2530 Enable SASL for bie kafka #2624
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Test Results151 tests ±0 151 ✅ ±0 46s ⏱️ -1s Results for commit d8d2eea. ± Comparison against base commit e2fcd53. This pull request removes 10 and adds 10 tests. Note that renamed tests count towards both.♻️ This comment has been updated with latest results. |
JaCoCo Test Coverage
|
agile-josiah
changed the title
tejans24
reviewed
Feb 16, 2024
tejans24
reviewed
Feb 16, 2024
Comment on lines
13
to
14
| username: USERNAME | ||
| password: PASSWORD |
There was a problem hiding this comment.
we'll need to add the password to the Vault/kube secrets and inject it into the containers per env
msnwatson
approved these changes
Feb 17, 2024
svc-bie-kafka/src/main/resources/application-integration-test.yaml
Outdated
Show resolved
Hide resolved
… 3.2.3 (#2659) Bump org.springframework.boot:spring-boot-autoconfigure Bumps [org.springframework.boot:spring-boot-autoconfigure](https://github.com/spring-projects/spring-boot) from 3.2.2 to 3.2.3. - [Release notes](https://github.com/spring-projects/spring-boot/releases) - [Commits](spring-projects/spring-boot@v3.2.2...v3.2.3) --- updated-dependencies: - dependency-name: org.springframework.boot:spring-boot-autoconfigure dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Cheng <[email protected]>
Made special issue code an environment variable, so it can be switched without code change.
nelsestu
approved these changes
Mar 8, 2024
shared/lib-bie-kafka/src/main/java/gov/va/vro/model/biekafka/ContentionEvent.java
Outdated
Show resolved
Hide resolved
msnwatson
approved these changes
Apr 8, 2024
| trust-store-type: "PKCS12" | ||
|
|
||
| bie: | ||
| kafka-topic-env: "TST" |
This was referenced Apr 10, 2024
nelsestu
approved these changes
Apr 11, 2024
There was a problem hiding this comment.
The BIE team is now going to be the BIA team, and as auth is now using the BIA RBAC authentication, it simplfies some of the certificate generation and handling. As Teja mentioned, we'll need to include the username and password in our reimplementation of secret automation.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What was the problem?
The VRO Certs to access Kafka are expiring and we need to decide whether VRO will provision their own Certs and provide the Public Key to BIP Solutions to renew the ACL access or attempt to complete the RBAC migration making the Certs a non-issue.
Associated tickets or Slack threads:
svc-bie-kafkain ourdevenvironment. #2530How does this fix it?1
This enables SASL_SSL for bie-kafka comms
How to test this PR
Footnotes
Pull-Requests guidelines. If PR is significant, update Current Software State wiki page. ↩