Casper Thygesen

I have tested the setup successfully: ``` logger: level: DEBUG format: logfmt add_timestamp: true static_fields: "@service": benthos input: label: source generate: interval: 1s mapping: | root.ID = uuid_v4() root.Name =...

> I seem to have it: > > > > ``` > > $ kubectl exec -ti my-cluster-entity-operator-6879c6b9d9-ccldp -c topic-operator -- curl -s localhost:8080/metrics | grep strimzi.resources > > #...

I see your concern. As minimum we need to understand if there is any reconciliation issues. That is really hard to monitor with this feature removed. If we do not...

> Isn't it considered bad practice to include things like this in JWT? Especially given they can grow really huge if you use them to manage Kafka ACLs. We have...

> I do not think that answers my question 😉. I understand that what Keycloak does is proprietary and does not work anywhere else. But whatever else we do, it...

Great points and great feedback! For context, we are doing a very granular control where each (micro)service has write and/or read access to 1 or 2 topics. This is being...

> > If the JWT expiration is set to the same as for Keycloak, it should be comparable performance-wise. On the other hand, one could decide they don't need such...

@Jeffail any feedback and when would a merge be realistic?

@Jeffail hi jeff. Any feedback? Do you prefer PRs in a different approach.

I would also be interested in this.