[Merged by Bors] - Support tls encryption and authentication

CHANGELOG.md

@@ -4,6 +4,13 @@ All notable changes to this project will be documented in this file.
 
 ## [Unreleased]
 
+### Added
+
+- BREAKING: Support for TLS encryption (activated per default -> port changes) and TLS authentication ([#333]).
+- BREAKING: Reworked top level configuration. Deep storage, Ingestion spec, discovery config maps etc. are now subfields of `spec.clusterConfig` instead of being top level under `spec` ([#333]).
+
+[#333]: https://github.com/stackabletech/druid-operator/pull/333
+
 ## [0.8.0] - 2022-11-07
 
 ### Added

deploy/config-spec/properties.yaml

@@ -25,9 +25,9 @@ spec:
 
 properties:
 
-  - property: &plaintext
+  - property: &plaintextPort
       propertyNames:
-        - name: "druid.plaintext"
+        - name: "druid.plaintextPort"
           kind:
             type: "file"
             file: "runtime.properties"
@@ -38,15 +38,39 @@ properties:
         unit: *unitPort
       roles:
         - name: "broker"
-          required: true
+          required: false
         - name: "coordinator"
-          required: true
+          required: false
         - name: "historical"
-          required: true
+          required: false
         - name: "middleManager"
-          required: true
+          required: false
         - name: "router"
-          required: true
+          required: false
+      asOfVersion: "0.0.0"
+
+  - property: &tlsPort
+      propertyNames:
+        - name: "druid.tlsPort"
+          kind:
+            type: "file"
+            file: "runtime.properties"
+      datatype:
+        type: "integer"
+        min: "1"
+        max: "65535"
+        unit: *unitPort
+      roles:
+        - name: "broker"
+          required: false
+        - name: "coordinator"
+          required: false
+        - name: "historical"
+          required: false
+        - name: "middleManager"
+          required: false
+        - name: "router"
+          required: false
       asOfVersion: "0.0.0"
 
   - property: &startupLoggingLogProperties

deploy/helm/druid-operator/configs/properties.yaml

@@ -25,9 +25,9 @@ spec:
 
 properties:
 
-  - property: &plaintext
+  - property: &plaintextPort
       propertyNames:
-        - name: "druid.plaintext"
+        - name: "druid.plaintextPort"
           kind:
             type: "file"
             file: "runtime.properties"
@@ -38,15 +38,39 @@ properties:
         unit: *unitPort
       roles:
         - name: "broker"
-          required: true
+          required: false
         - name: "coordinator"
-          required: true
+          required: false
         - name: "historical"
-          required: true
+          required: false
         - name: "middleManager"
-          required: true
+          required: false
         - name: "router"
-          required: true
+          required: false
+      asOfVersion: "0.0.0"
+
+  - property: &tlsPort
+      propertyNames:
+        - name: "druid.tlsPort"
+          kind:
+            type: "file"
+            file: "runtime.properties"
+      datatype:
+        type: "integer"
+        min: "1"
+        max: "65535"
+        unit: *unitPort
+      roles:
+        - name: "broker"
+          required: false
+        - name: "coordinator"
+          required: false
+        - name: "historical"
+          required: false
+        - name: "middleManager"
+          required: false
+        - name: "router"
+          required: false
       asOfVersion: "0.0.0"
 
   - property: &startupLoggingLogProperties

deploy/helm/druid-operator/templates/roles.yaml

@@ -98,3 +98,11 @@ rules:
       - get
       - list
       - watch
+  - apiGroups:
+      - authentication.stackable.tech
+    resources:
+      - authenticationclasses
+    verbs:
+      - get
+      - list
+      - watch

deploy/manifests/configmap.yaml

@@ -29,9 +29,9 @@ data:
 
     properties:
 
-      - property: &plaintext
+      - property: &plaintextPort
           propertyNames:
-            - name: "druid.plaintext"
+            - name: "druid.plaintextPort"
               kind:
                 type: "file"
                 file: "runtime.properties"
@@ -42,15 +42,39 @@ data:
             unit: *unitPort
           roles:
             - name: "broker"
-              required: true
+              required: false
             - name: "coordinator"
-              required: true
+              required: false
             - name: "historical"
-              required: true
+              required: false
             - name: "middleManager"
-              required: true
+              required: false
             - name: "router"
-              required: true
+              required: false
+          asOfVersion: "0.0.0"
+
+      - property: &tlsPort
+          propertyNames:
+            - name: "druid.tlsPort"
+              kind:
+                type: "file"
+                file: "runtime.properties"
+          datatype:
+            type: "integer"
+            min: "1"
+            max: "65535"
+            unit: *unitPort
+          roles:
+            - name: "broker"
+              required: false
+            - name: "coordinator"
+              required: false
+            - name: "historical"
+              required: false
+            - name: "middleManager"
+              required: false
+            - name: "router"
+              required: false
           asOfVersion: "0.0.0"
 
       - property: &startupLoggingLogProperties