Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add super.users to controller relevant options #10309

Merged
merged 1 commit into from
Jul 6, 2024
Merged

Add super.users to controller relevant options #10309

merged 1 commit into from
Jul 6, 2024

Conversation

scholzj
Copy link
Member

@scholzj scholzj commented Jul 5, 2024

Type of change

  • Bugfix

Description

Some Admin API queries such as describeMetadataQuorum seem to be executed and authorized on the controller nodes even when the Admin API is connected to a broker. But currently, we do not roll controller nodes when the super.users field changes. That means that even through a user is configured as super user, it still gets ACL denied because the controller is not aware of this.

This Pr adds the super.users option to the controller-relevant configuration options to make sure the contoller nodes are roled when it changes. That should help us to avoid such confusing issues as described above when super users is denied something by ACLs.

Checklist

  • Make sure all tests pass
  • Try your changes from Pod inside your Kubernetes and OpenShift cluster, not just locally

@scholzj scholzj added this to the 0.43.0 milestone Jul 5, 2024
@scholzj scholzj requested a review from ppatierno July 5, 2024 17:36
@scholzj
Copy link
Member Author

scholzj commented Jul 5, 2024

/azp run regression

@azure-pipelines Azure Pipelines
Copy link

Azure Pipelines successfully started running 1 pipeline(s).

@scholzj scholzj merged commit 3b9ced7 into strimzi:main Jul 6, 2024
21 checks passed
@scholzj scholzj deleted the add-super-users-to-controller-relevant-configuration-options branch July 6, 2024 17:56
mstruk pushed a commit to mstruk/strimzi-kafka-operator that referenced this pull request Jul 15, 2024
@scholzj @mstruk
Add super.users to controller relevant options (strimzi#10309)
3462e7e 
Signed-off-by: Jakub Scholz <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ppatierno ppatierno ppatierno approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
0.43.0
Development

Successfully merging this pull request may close these issues.
2 participants
@scholzj @ppatierno