cp-ansible icon indicating copy to clipboard operation
cp-ansible copied to clipboard

Published 20 hours ago verified publisher icon confluentinc

[ANSIENG-3807] | Rbac over mTLS

Open rrbadiani opened this issue 4 months ago • 2 comments

Description

This Pr aims to add support for RBAC over mTLS. The includes changes for

  • MDS
  • Broker
  • Controller
  • SR
  • ERP
  • RP
  • Connect
  • KSQL
  • C3
  • Using cert based token retrival
  • Extracting Principal from certs to assign role bindings
  • Molecule tests
  • Setting Principal Mapping Rules
  • Setting impersonation super users for principal propogation

Replicator changes will be raised in seperate PR

Fixes # (issue)

Type of change

  • [ ] Bug fix (non-breaking change which fixes an issue)
  • [X] New feature (non-breaking change which adds functionality)
  • [ ] Breaking change (fix or feature that would cause existing functionality to not work as expected)
  • [ ] This change requires a documentation update

How Has This Been Tested?

zookeeper

kraft

Checklist:

  • [ ] Any variable/code changes have been validated to be backwards compatible (doesn't break upgrade)
  • [ ] I have added tests that prove my fix is effective or that my feature works
  • [ ] If required, I have ensured the changes can be discovered by cp-ansible discovery codebase
  • [ ] My code follows the style guidelines of this project
  • [ ] I have commented my code, particularly in hard-to-understand areas
  • [ ] I have made corresponding changes to the documentation
  • [ ] My changes generate no new warnings
  • [ ] Any dependent changes have been merged and published in downstream modules

rrbadiani avatar Oct 18 '24 13:10 rrbadiani