Can users/ACL be managed by the operator

[dberardo-com]

trafficstars

if so, then which params of the CRD should be set ?

[Rory-Z]

Are you using EMQX 5 or EMQX 4 ?

[dberardo-com]

5.0.9

[Rory-Z]

In EMQX 5, all user/ACLs can be configured via emqx.conf, and in EMQX CR, you can populate with the contents of .spec.bootstrapConfig

[dberardo-com]

i see, ok, i was actually meaning something like EMQXAclUser and creating users/acl as CRD instead of having to edit the "core" EMQX file defining the emqx cluster and its config. Fair enough though i will have a look at the config documentation you linked: https://www.emqx.io/docs/en/v5.0/admin/cfg.html

I had experience with mosquitto and SQL based ACLs. Is it a thing in EMQX as well? could ACL be read in from a HA postgres cluster? or are config files the only option?

---

EDIT

yes it seems to be possible: https://www.emqx.io/docs/en/v5.0/admin/cfg.html#authz-postgresql

so now the question would be, perhaps if ACL is postgres based, then i might have to look for some CRD that controls insertion of entries in postgres tables as a "proxy" for users/ACL in EMQX. i can post the results of my research here then.

[Rory-Z]

so now the question would be, perhaps if ACL is postgres based, then i might have to look for some CRD that controls insertion of entries in postgres tables as a "proxy" for users/ACL in EMQX. i can post the results of my research here then.

So cool, I'm looking forward